Back to skill
Skillv2.1.0
ClawScan security
RealmRouter Switch · ClawHub's context-aware review of the artifact, metadata, and declared behavior.
Scanner verdict
SuspiciousFeb 28, 2026, 6:50 AM
- Verdict
- suspicious
- Confidence
- medium
- Model
- gpt-5-mini
- Summary
- The skill's code and runtime behavior mostly match its stated purpose (managing a RealmRouter provider), but there are documentation mismatches and minor inconsistencies you should verify before installing.
- Guidance
- This skill appears to implement what it says (it edits your OpenClaw config, backs it up, verifies keys by contacting https://realmrouter.cn/v1, and can restart the gateway). Before installing: - Verify the domain (https://realmrouter.cn) is the intended RealmRouter endpoint for you. The skill will send your REALMROUTER_API_KEY there as a Bearer token when validating models. - Note the SKILL.md/Windows instructions reference PowerShell files that are not actually shipped (install_rr.ps1 and realm_manager.ps1); the shipped files are Python scripts (install_rr_win.py and realm_manager.py). Use the provided files, not the mismatched doc commands. - Back up your current ~/.openclaw/openclaw.json (the tool already creates backups under ~/.openclaw/backups, but keeping an external copy is wise) and inspect the scripts if you have doubts. - Be aware the tool can automatically restart your gateway (openclaw gateway restart) — run commands without --restart-gateway first if you want manual control. - Avoid using force/skip flags unless you understand they bypass connectivity/key checks. Given the documentation mismatches and the importance of the API key and config edits, review the packaged scripts or test in a safe environment before deploying to production.
Review Dimensions
- Purpose & Capability
- noteName/description match the code: the scripts modify ~/.openclaw/openclaw.json, back up before changes, validate keys/models via https://realmrouter.cn/v1, and call the openclaw binary to restart the gateway. Requested binary (openclaw) and env var (REALMROUTER_API_KEY) are appropriate. Minor inconsistency: _meta.json version (1.7.0) in the package differs from registry metadata (2.1.0).
- Instruction Scope
- concernSKILL.md instructs installing and running helper scripts and explicitly states it will restart the gateway (which the code does via subprocess). That is expected for this purpose, but SKILL.md contains incorrect references for Windows (mentions install_rr.ps1 and realm_manager.ps1) while the package provides install_rr_win.py and realm_manager.py instead — a documentation vs. shipped-files mismatch that could confuse users and lead to running the wrong command. The skill reads and writes the OpenClaw config (~/.openclaw/openclaw.json) and backups — this is in-scope, but verify you are comfortable with automated edits and restarts.
- Install Mechanism
- okNo network downloads or third-party installers are performed by the included scripts: Unix installer copies rr.sh to ~/.local/bin, Windows installer copies rr_win.py to %USERPROFILE%\bin. No extract-from-URL or external binary fetches are present. Installation behavior is local and transparent.
- Credentials
- okThe only required credential is REALMROUTER_API_KEY (declared as primary). The code uses that key to call realmrouter.cn and to write the key into the OpenClaw config; no other unrelated secrets or environment variables are requested. This is proportionate to the stated goal.
- Persistence & Privilege
- okalways is false and the skill only modifies its own OpenClaw config files under ~/.openclaw and creates backups there. It does call 'openclaw gateway restart' to apply changes, which is expected for a provider switcher but you should be prepared for gateway restarts initiated by the tool.