ClawHub
Skill flagged — suspicious patterns detected

ClawHub Security flagged this skill as suspicious. Review the scan results before using.

Llama 3 — Meta Llama 3.3, 3.2, 3.1 on Your Local Device Fleet

Llama 3 by Meta — run Llama 3.3, Llama 3.2, and Llama 3.1 across your local device fleet. The most popular open-source LLM family routed to the best availabl...

MIT-0 · Free to use, modify, and redistribute. No attribution required.
0 · 11 · 0 current installs · 0 all-time installs
byTwin Geeks@twinsgeeks
MIT-0
Security Scan
VirusTotalVirusTotal
Benign
View report →
OpenClawOpenClaw
Suspicious
medium confidence
Purpose & Capability
Name/description (run Llama 3 models on a local fleet) align with what the SKILL.md tells the agent to do (install/run an ollama-herd router and herd-node, call local endpoints). Required binaries (curl/wget) and optional python/pip are proportionate. The declared configPaths (~/.fleet-manager/latency.db and logs/herd.jsonl) are consistent with a fleet manager that records latency and logs.
!
Instruction Scope
The instructions direct the agent/user to call local dashboard endpoints (e.g., /dashboard/api/traces, /api/ps) that likely contain recent request traces, which can include prompts, responses, or other sensitive data. They also instruct installation via 'pip install ollama-herd' and running 'herd'/'herd-node' which will execute third‑party code and may trigger remote model downloads. The SKILL.md asserts 'model downloads require explicit user confirmation' — that is a runtime behavior of the herd software and cannot be enforced by the instruction alone; you should verify this behavior in the actual package code before trusting it.
Install Mechanism
No install spec in the skill bundle (instruction-only) reduces immediate delivery risk, but the quick start suggests installing 'ollama-herd' from PyPI. Installing an external PyPI package executes third‑party code on the host and can download models or other artifacts — expected for this purpose but requires trust in the package and its releases.
Credentials
The skill requests no credentials or environment variables and only requires common network/CLI utilities (curl/wget, optionally python/pip). That is proportional to a tool that exposes an HTTP API and provides a Python client/CLI.
Persistence & Privilege
always:false and normal autonomous invocation settings — no elevated platform privileges requested. The skill references and will interact with files under ~/.fleet-manager; that is appropriate for a fleet manager but means the skill (or installed software) will have read/write access to those local config/log files. The SKILL.md explicitly warns not to delete/modify those files, but installing and running the herd software will create/read them.
What to consider before installing
This skill appears to be what it says (a local Ollama fleet router), but exercise caution: 1) Verify the 'ollama-herd' PyPI package and its source repository (check the GitHub repo, release signatures, and recent commits) before running pip install. 2) Inspect the package code (or run it in an isolated VM/container) to confirm that model downloads truly require explicit confirmation and to see which remote hosts it contacts to fetch models. 3) Be aware that the suggested curl endpoints (especially /dashboard/api/traces) likely return recent request traces and could expose prompt/response content — avoid running those commands on machines that hold sensitive prompts unless you trust the environment. 4) Restrict network access (e.g., block outbound model-download hosts) or run the fleet on an isolated machine if you need strong guarantees. 5) Review permissions and contents of ~/.fleet-manager before and after installing, and consider auditing logs produced by the tool. If you lack time to audit, treat this as untrusted code and run it in a sandboxed environment.

Like a lobster shell, security has layers — review code before you run it.

Current versionv1.0.0
Download zip
apple-siliconvk977sg7mh955d1zf9mdhcdvcrn83ybedfleet-routingvk977sg7mh955d1zf9mdhcdvcrn83ybedlatestvk977sg7mh955d1zf9mdhcdvcrn83ybedllamavk977sg7mh955d1zf9mdhcdvcrn83ybedllama-3vk977sg7mh955d1zf9mdhcdvcrn83ybedllama-3.3vk977sg7mh955d1zf9mdhcdvcrn83ybedllama3vk977sg7mh955d1zf9mdhcdvcrn83ybedlocal-llmvk977sg7mh955d1zf9mdhcdvcrn83ybedmac-minivk977sg7mh955d1zf9mdhcdvcrn83ybedmac-studiovk977sg7mh955d1zf9mdhcdvcrn83ybedmeta-llamavk977sg7mh955d1zf9mdhcdvcrn83ybedollamavk977sg7mh955d1zf9mdhcdvcrn83ybedopen-sourcevk977sg7mh955d1zf9mdhcdvcrn83ybed

License

MIT-0
Free to use, modify, and redistribute. No attribution required.
Termshttps://spdx.org/licenses/MIT-0.html

Runtime requirements

llama Clawdis
OSmacOS · Linux
Any bincurl, wget

SKILL.md

Llama 3 — Run Meta's LLMs Across Your Local Fleet

The Llama family is the most widely deployed open-source LLM. This skill routes Llama requests across your devices — the fleet picks the best machine for every request automatically.

Supported Llama models

ModelParametersOllama nameBest for
Llama 3.370Bllama3.3:70bBest overall — matches GPT-4o on most benchmarks
Llama 3.21B, 3Bllama3.2:3bFast responses on low-RAM devices
Llama 3.18B, 70B, 405Bllama3.1:70bProven workhorse, massive community
Llama 38B, 70Bllama3:70bOriginal release, still widely used

Quick start

pip install ollama-herd    # PyPI: https://pypi.org/project/ollama-herd/
herd                       # start the router (port 11435)
herd-node                  # run on each device — finds the router automatically

No models are downloaded during installation. Models are pulled on demand when a request arrives, or manually via the dashboard. All pulls require user confirmation.

Use Llama through the fleet

OpenAI SDK (drop-in replacement)

from openai import OpenAI

client = OpenAI(base_url="http://localhost:11435/v1", api_key="not-needed")

response = client.chat.completions.create(
    model="llama3.3:70b",
    messages=[{"role": "user", "content": "Explain transformer architecture"}],
    stream=True,
)
for chunk in response:
    print(chunk.choices[0].delta.content or "", end="")

curl (Ollama format)

curl http://localhost:11435/api/chat -d '{
  "model": "llama3.3:70b",
  "messages": [{"role": "user", "content": "Write a Python quicksort"}],
  "stream": false
}'

curl (OpenAI format)

curl http://localhost:11435/v1/chat/completions \
  -H "Content-Type: application/json" \
  -d '{"model": "llama3.2:3b", "messages": [{"role": "user", "content": "Hello"}]}'

Which Llama model for your hardware

Pick the model that fits your available memory — smaller models work great for most tasks:

ModelMin RAMRecommended Mac
llama3.2:1b2GBAny Mac — even 8GB
llama3.2:3b4GBMac Mini (16GB)
llama3:8b8GBMac Mini (16GB)
llama3.3:70b48GBMac Studio M4 Max (128GB)
llama3.1:405b256GB+Mac Studio M4 Ultra (256GB) or distributed

The fleet router sends requests to the machine where the model is loaded. No manual routing needed.

Why run Llama locally

  • Free after hardware — Meta's license allows commercial use with no per-token cost
  • Privacy — prompts and responses never leave your network
  • No rate limits — your hardware, your throughput
  • Fleet routing — multiple machines share the load automatically

See what's running

# Models loaded in memory right now
curl -s http://localhost:11435/api/ps | python3 -m json.tool

# All models available across the fleet
curl -s http://localhost:11435/api/tags | python3 -m json.tool

Monitor Llama performance

# Recent request traces — see latency, tokens, which node handled each request
curl -s "http://localhost:11435/dashboard/api/traces?limit=10" | python3 -m json.tool

# Fleet health — 11 automated checks
curl -s http://localhost:11435/dashboard/api/health | python3 -m json.tool

Web dashboard at http://localhost:11435/dashboard — live view of all nodes, queues, and models.

Also available on this fleet

Other LLM models

Qwen 3.5, DeepSeek-V3, DeepSeek-R1, Phi 4, Mistral, Gemma 3, Codestral — any Ollama model routes through the same endpoint.

Image generation

curl http://localhost:11435/api/generate-image \
  -d '{"model": "z-image-turbo", "prompt": "a llama in the mountains", "width": 512, "height": 512}'

Speech-to-text

curl http://localhost:11435/api/transcribe -F "file=@recording.wav" -F "model=qwen3-asr"

Embeddings

curl http://localhost:11435/api/embed \
  -d '{"model": "nomic-embed-text", "input": "Meta Llama open source language model"}'

Full documentation

Guardrails

  • Model downloads require explicit user confirmation — Llama models range from 1GB (1B) to 230GB+ (405B). Always confirm before pulling.
  • Model deletion requires explicit user confirmation.
  • Never delete or modify files in ~/.fleet-manager/.
  • If a model is too large for available memory, suggest a smaller variant.
  • No models are downloaded automatically — all pulls are user-initiated or require opt-in via the auto_pull setting.

Files

1 total
Select a file
Select a file to preview.

Comments

Loading comments…