ClawHub
Skill flagged — suspicious patterns detected

ClawHub Security flagged this skill as suspicious. Review the scan results before using.

Openfused - Decentralized Context Mesh for AI Agents.

v1.0.6

Decentralized context mesh for AI agents. Manage stores, send signed/encrypted messages, sync with peers, and manage cryptographic trust. Use when initializi...

1· 68·0 current·0 all-time
by@velinxs
MIT-0
Download zip
LicenseMIT-0 · Free to use, modify, and redistribute. No attribution required.
Security Scan
VirusTotalVirusTotal
Suspicious
View report →
OpenClawOpenClaw
Benign
medium confidence
Purpose & Capability
Name/description (decentralized context mesh) align with required binary (openfuse) and required config (~/.ssh/config). Requiring SSH config and an openfuse binary is expected for an SSH/SCP-based peer sync tool.
Instruction Scope
SKILL.md stays within the stated purpose: instructions cover init, key management, sharing, sending messages (via SCP/HTTP), and local store layout. It explicitly warns about shared/plaintext files and autonomous invocation. It references ~/.ssh and local key files in store; these are relevant but enable network actions, so the agent will be able to perform remote transfers when invoked.
Install Mechanism
Install is an npm package from the public registry (openfused@0.3.5), which is an expected distribution method but carries the usual moderate risk of executing third-party code. The SKILL.md suggests global npm -g install which modifies system-wide binaries.
!
Credentials
No environment variables requested, which is appropriate. However the skill requires access to ~/.ssh/config and uses existing SSH private keys for peer sync; this is sensitive — access to your SSH config/keys can enable network connections to other hosts. That access is proportionate to SSH-based syncing but still warrants caution.
Persistence & Privilege
always is false and the skill is user-invocable. The skill notes autonomous invocation as a risk and recommends sandboxing; there is no indication it attempts to persist beyond installing the openfuse binary. This is normal for a CLI integration.
Assessment
This skill appears to do what it says, but take these precautions before installing: - Inspect the npm package source (and GitHub repo) before npm install, because installing a package executes third-party code. - Be aware it uses your ~/.ssh config and existing SSH keys for SCP/peer sync — limit exposure by using a dedicated SSH key/config or running the agent in a sandboxed environment. - Avoid placing secrets in the store's shared/ directory; shared files are plaintext to peers. - Prefer local or per-project installation instead of a global -g install if you want to reduce system-wide impact. - If your agent platform allows autonomous skill invocation, restrict or sandbox this skill to prevent unintended network transfers.

Like a lobster shell, security has layers — review code before you run it.

latestvk972y1hnddwbwz7q83t1sv31m583aa8y

License

MIT-0
Free to use, modify, and redistribute. No attribution required.
Termshttps://spdx.org/licenses/MIT-0.html

Runtime requirements

Binsopenfuse
Config~/.ssh/config

Install

Node
Bins: openfuse
npm i -g openfused@0.3.5

Comments