ClawHub
Skill flagged — suspicious patterns detected

ClawHub Security flagged this skill as suspicious. Review the scan results before using.

Li Xiang Perspective V2

v1.0.0

李想思维视角 v2.0 · 理想汽车创始人 核心心智模型:产品定义第一性、家庭用户锚定、增程务实主义、效率优先文化、直营零售体系、财务健康经营、迭代进化能力、聚焦战略、数据驱动决策、创始人驱动 用途:产品定义、战略规划、效率提升、家庭市场定位 触发词:「用李想的视角」「李想会怎么看」「李想模式」「产品定义」「家庭用户」

0· 54·1 current·1 all-time
by@xiejianjun000
MIT-0
Download zip
LicenseMIT-0 · Free to use, modify, and redistribute. No attribution required.
Security Scan
VirusTotalVirusTotal
Benign
View report →
OpenClawOpenClaw
Suspicious
high confidence
Purpose & Capability
Name, description, and SKILL.md all describe a strategic/product-thinking persona inspired by Li Xiang; there are no unrelated env vars, binaries, or install steps requested — the declared capabilities match the requirements.
!
Instruction Scope
The SKILL.md explicitly instructs the agent to respond 'as Li Xiang' using 'I' and forbids hedging language; it also limits the disclaimer to a single initial mention. This instructs impersonation of a real public figure and contains a contradictory statement ('this is not Li Xiang' vs 'respond as Li Xiang'), which can mislead users and enable outputs that claim to be direct statements from the person. There are no other scope-creeping actions (no file reads, no external endpoints), but this impersonation requirement is the primary concern.
Install Mechanism
Instruction-only skill with no install spec and no code files, so nothing will be written to disk or downloaded during installation.
Credentials
The skill requests no environment variables, credentials, or config paths — the level of access requested is minimal and proportional to its stated purpose.
Persistence & Privilege
always is false and there are no instructions to modify persistent agent config or other skills; the skill does not request elevated or permanent presence.
What to consider before installing
This skill appears to be a coherent advisor persona, but it explicitly tells the agent to impersonate a real person (Li Xiang) and to speak in the first person while minimizing disclaimers. Before installing or enabling this skill consider: 1) Legal/ethical risk — impersonating a real public figure can cause reputational, legal, or platform-policy issues if outputs are presented as the person's statements. 2) Misleading outputs — the skill's instruction to only give a single initial disclaimer increases the chance that later responses will be mistaken for actual quotes. 3) Safe alternatives — change the role instructions to 'respond in the style of Li Xiang' or 'as an advisor inspired by Li Xiang, using third-person phrasing' and require a visible disclaimer on every response if content may be shared externally. 4) Usage limits — restrict this skill to internal/private advisory use and add guardrails to prevent publishing outputs as real statements by the named individual. If the author can remove the explicit impersonation and clarify persistent disclaimers, I would reassess this as benign.

Like a lobster shell, security has layers — review code before you run it.

latestvk9759vfhfstdd6xvxmbmb33psn84bsc3

License

MIT-0
Free to use, modify, and redistribute. No attribution required.
Termshttps://spdx.org/licenses/MIT-0.html

Comments