ClawHub
Skill flagged — suspicious patterns detected

ClawHub Security flagged this skill as suspicious. Review the scan results before using.

UniFuncs Reader

v0.0.4

Use UniFuncs Reader API to read web pages and documents such as PDF and Word and Excel and PPTX URL, with AI-powered content extraction. Use this skill when...

0· 407·0 current·0 all-time
byUniFuncs@vinlic
MIT-0
Download zip
LicenseMIT-0 · Free to use, modify, and redistribute. No attribution required.
Security Scan
VirusTotalVirusTotal
Benign
View report →
OpenClawOpenClaw
Suspicious
medium confidence
Purpose & Capability
The name, description, SKILL.md and read.py all consistently implement a client for the UniFuncs Web Reader API (posting a target URL and options to https://api.unifuncs.com/api/web-reader/read). That behavior is coherent with the stated purpose. However, the registry metadata lists no required environment variables or primary credential, while both SKILL.md and read.py require UNIFUNCS_API_KEY — this discrepancy is unexpected and should have been declared.
!
Instruction Scope
Runtime instructions and the code direct the agent to transmit the target URL (and potentially content via the API) to a third-party endpoint (api.unifuncs.com). The CLI supports passing a Cookie header, which could forward session credentials for authenticated pages. The SKILL.md/code do not request or read unrelated local files, but they do instruct sending user-supplied page URLs and optional cookies to an external service — a privacy/data-exfiltration risk depending on content sensitivity.
Install Mechanism
No install spec or external downloads are declared; the skill is instruction/code-only and uses standard Python stdlib. There is no evidence of high-risk install behavior (no external archives, no URL-shortened downloads or nonstandard installers).
!
Credentials
The code requires an API key via the UNIFUNCS_API_KEY environment variable and the SKILL.md explicitly instructs the user to set it, but the skill metadata lists no required env vars or primary credential. This omission is incoherent and could mislead users into installing without realizing they must supply an API key. Additionally, the ability to pass --set-cookie means sensitive cookie strings may be forwarded to the third-party API if used.
Persistence & Privilege
The skill does not request elevated or persistent privileges. always is false and there is no indication it modifies other skills or agent-wide settings. Autonomous invocation is allowed (the default) but that alone is not a problem; combined with the above omissions, users should be cautious about enabling autonomous calls that upload URLs/content to an external service.
What to consider before installing
This skill implements a straightforward UniFuncs web-reader client, but the package metadata failed to declare that it requires an API key (UNIFUNCS_API_KEY). Before installing, consider: 1) The tool will send the target URL and extraction options (and optionally cookies) to api.unifuncs.com — do not use it for sensitive/private documents unless you trust the vendor and have reviewed their privacy/terms. 2) The metadata should explicitly list UNIFUNCS_API_KEY as a required credential; ask the publisher to correct the registry entry. 3) If you need to test, run read.py locally with a throwaway API key and inspect network traffic or logs first. 4) Be cautious about enabling autonomous invocation for this skill in agents that may run on sensitive data, since it can forward page content to a third party.

Like a lobster shell, security has layers — review code before you run it.

0.0.1vk97460tz6qywxpf7g5wyzy28ah80ya95latestvk9773gm3szq4995b0a2v44d5bh83vhjn

License

MIT-0
Free to use, modify, and redistribute. No attribution required.
Termshttps://spdx.org/licenses/MIT-0.html

Comments