Uncle Matt
v2.420.70Uncle Matt is your favorite internet uncle who stops you from doing really stupid shit while keeping secrets safe.
⭐ 3· 1.7k·0 current·0 all-time
MIT-0
Download zip
LicenseMIT-0 · Free to use, modify, and redistribute. No attribution required.
Security Scan
OpenClaw
Benign
high confidencePurpose & Capability
Name/description claim a strict, allowlisted outbound API proxy. The SKILL.md only requests the agent use uncle_matt_action(actionId, json) and to follow strict refusal rules; it does not request unrelated credentials, files, or binaries. The few operator-facing instructions (editing broker/config/actions.default.json, running installer scripts) are appropriate for the stated Broker-based proxy purpose.
Instruction Scope
Runtime instructions remain within the security-proxy scope: they require using action IDs, refusing requests outside the allowlist, and never exposing secrets. The SKILL.md references operator setup steps and local Broker endpoints (127.0.0.1:8443) which are appropriate; nothing in SKILL.md tells the agent to read arbitrary files, exfiltrate data, or call arbitrary URLs.
Install Mechanism
There is no install spec and no code files executed by the skill itself (instruction-only), which minimizes risk. The skill explicitly states the Broker and installer are not included and must be obtained separately; that external installation is outside this package and should be audited separately.
Credentials
The skill requires no environment variables, no credentials, and no config paths. This is proportionate to an instruction-only policy/proxy helper. It does rely on an external Broker to hold secrets (per the docs) — those broker credentials are not requested here, which is appropriate.
Persistence & Privilege
Skill flags are default (always: false; agent-invocation allowed). The skill does not request permanent presence or claim to modify other skills or system-wide settings. It only defines operator steps to install an external Broker, which is normal for this design.
Assessment
This skill is internally consistent and safe as an instruction-only policy/proxy wrapper — but it does not include the Broker or installer. Before installing or relying on this skill: (1) Inspect the referenced UNCLEMATTCLAWBOT GitHub repo and installer scripts for malicious or surprising behavior (downloading binaries, remote endpoints, or services that accept remote connections). (2) Verify the Broker actually binds to localhost and enforces mTLS, allowlists, and rate/budget limits as claimed. (3) Validate actions you add to broker/config/actions.default.json to ensure they do not embed secrets or point to unintended upstream hosts/IPs. (4) Be cautious about enabling any external endpoints or allowing private IP ranges. (5) Double-check the homepage/repo domain (bobsturtletank.fun) and any third-party assets before running installer scripts. If you want higher assurance, have someone with systems/security experience audit the Broker repository and the installer before use.Like a lobster shell, security has layers — review code before you run it.
A1A BEACH FRONT AVENUEvk975ghkgaf1eds1avknzvkvm5d80x3wmanti-prompt-injectionvk975ghkgaf1eds1avknzvkvm5d80x3wmbrokervk975ghkgaf1eds1avknzvkvm5d80x3wmcoolvk975ghkgaf1eds1avknzvkvm5d80x3wmhandstandvk975ghkgaf1eds1avknzvkvm5d80x3wmlatestvk975ghkgaf1eds1avknzvkvm5d80x3wmmost bestvk975ghkgaf1eds1avknzvkvm5d80x3wmmtlsvk975ghkgaf1eds1avknzvkvm5d80x3wmopenclawvk977gswprmyxgs60220z8tq06980dcgsprompt-injectionvk975ghkgaf1eds1avknzvkvm5d80x3wmsafetyvk975ghkgaf1eds1avknzvkvm5d80x3wmsecurityvk975ghkgaf1eds1avknzvkvm5d80x3wmsuper dudevk975ghkgaf1eds1avknzvkvm5d80x3wmuncle mattvk975ghkgaf1eds1avknzvkvm5d80x3wmwowvk975ghkgaf1eds1avknzvkvm5d80x3wm
License
MIT-0
Free to use, modify, and redistribute. No attribution required.