ClawHub
Skill flagged — suspicious patterns detected

ClawHub Security flagged this skill as suspicious. Review the scan results before using.

xiaojia-skills

v1.0.0

Call the JustAI openapi async chat endpoints and return structured JSON results. Use when Codex needs to invoke the deployed JustAI agent for marketing plans...

0· 53·0 current·0 all-time
by@tanchaowen84
MIT-0
Download zip
LicenseMIT-0 · Free to use, modify, and redistribute. No attribution required.
Security Scan
VirusTotalVirusTotal
Benign
View report →
OpenClawOpenClaw
Suspicious
medium confidence
Purpose & Capability
Name/description claim: call JustAI openapi async chat endpoints. The bundled Python scripts implement exactly that (list projects/skills, submit chat, poll results). However the registry metadata listed no required environment variables while the SKILL.md and scripts require JUSTAI_OPENAPI_BASE_URL and JUSTAI_OPENAPI_API_KEY — an inconsistency in declared requirements versus actual needs.
Instruction Scope
Runtime instructions and the scripts are narrowly scoped: they only read the specified JUSTAI_OPENAPI_* env vars, send JSON payloads to the configured base URL, and print JSON results. They do not read other system files, other credentials, or perform arbitrary shell commands beyond invoking the included Python scripts. Note: using the scripts will transmit user messages and any supplied project_id/skill_id to the configured external endpoint.
Install Mechanism
There is no install spec — this is effectively an instruction-only skill bundled with Python scripts. That is low-risk from an automatic-install perspective, but the bundled scripts will be written into the skills directory and executed when invoked; review the shipped code before running.
!
Credentials
The scripts reasonably require JUSTAI_OPENAPI_BASE_URL and JUSTAI_OPENAPI_API_KEY (and optional JUSTAI_OPENAPI_TIMEOUT). That matches the skill's networked purpose, but the package/registry metadata listed no required env vars — a mismatch that could mislead users or automated guards about the need to provide an API key and base URL. Also, providing the API key gives the skill (and anyone with access to that key) the ability to call the remote JustAI service with your data, so key scope and trust in the endpoint matter.
Persistence & Privilege
Flags indicate the skill is not forced always-on and it doesn't request special system-wide persistence. It does not modify other skills or system settings. The skill can be invoked autonomously by the agent (default platform behavior) — not a problem in isolation but worth noting when combined with external network access.
What to consider before installing
Before installing or using this skill: - Expect to set JUSTAI_OPENAPI_BASE_URL and JUSTAI_OPENAPI_API_KEY in your environment; the code will exit if they're not present even though the registry metadata doesn't list them. This mismatch is likely an oversight but you should be aware. - The scripts will send your prompts, conversation_id, and any provided project_id/skill_id to the configured base URL. Only use a base URL and API key you trust (preferably a well-audited internal or vendor endpoint). - Inspect the bundled scripts (they are small and readable) before running them in a sensitive environment. They use urllib to POST JSON; no other hidden network calls or file exfiltration are present in the code. - Limit the scope of the API key you provide (use least privilege) and avoid putting broad or long-lived org-level keys into this skill if possible. - Because the source/homepage is unspecified in the registry, consider installing from the upstream repository referenced in README (verify its authenticity) or obtain the code via a verified source. - If you need stricter controls, run the scripts in an isolated environment/container or use a proxy to monitor outbound requests to the configured base URL. If you want, I can list the exact lines that require the env vars and the network endpoints the scripts will call.

Like a lobster shell, security has layers — review code before you run it.

latestvk977znyh71cqwvk4tvf8fnxxw583ga65

License

MIT-0
Free to use, modify, and redistribute. No attribution required.
Termshttps://spdx.org/licenses/MIT-0.html

Comments