Skill flagged — suspicious patterns detected
ClawHub Security flagged this skill as suspicious. Review the scan results before using.
Night Bazaar
v3.2.0Find night markets, food streets, and local culinary hotspots. Discover street food, local specialties, and the best evening food experiences. Also supports:...
⭐ 0· 33·0 current·0 all-time
MIT-0
Download zip
LicenseMIT-0 · Free to use, modify, and redistribute. No attribution required.
Security Scan
Capability signals
These labels describe what authority the skill may exercise. They are separate from suspicious or malicious moderation verdicts.
OpenClaw
Suspicious
medium confidencePurpose & Capability
The skill description advertises broad travel capabilities (flight/hotel/booking, “Powered by Fliggy”) but the SKILL.md only contains CLI commands for searching POIs (night markets). No booking commands, APIs, or credentials for Fliggy are provided — this is an unexplained mismatch between what the skill says it does and what it actually instructs the agent to do.
Instruction Scope
The runtime instructions require installing and running an external CLI (flyai) and insist every answer come exclusively from its output. The runbook also instructs writing an execution log to disk (.flyai-execution-log.json) if file writes are available. The skill enforces re-execution until results include a specific link format, which could cause repeated CLI calls. These behaviors go beyond a simple lookup skill and expand the agent's local-side actions.
Install Mechanism
There is no built-in install spec, but SKILL.md mandates 'npm i -g @fly-ai/flyai-cli' if the CLI is missing. Installing a global npm package from an unknown publisher (no homepage or source provided) is a moderate risk — the skill expects users/agents to fetch and run third-party code without checksums or publisher verification.
Credentials
The skill declares no required environment variables or credentials, which aligns with simple POI search. However, the description's claims about booking/Fliggy would normally require API keys or credentials — none are requested or documented. Additionally, the execution log may capture and persist user queries and results (potentially sensitive) without explicit consent or retention policy.
Persistence & Privilege
The skill is not marked 'always:true' and does not request elevated platform privileges. However, its runbook instructs appending execution logs to a file in the working directory if available, which gives it persistent local state (request IDs, queries, results). This is plausible for auditing but is a persistence behavior users should be aware of.
What to consider before installing
This skill requires installing and running a third-party npm CLI on your machine and will rely entirely on that CLI's output. Before installing or invoking it: 1) Verify the publisher and inspect the @fly-ai/flyai-cli package on the npm registry (or run it in a sandbox) — the skill provides no homepage/source. 2) Expect the skill to write a local execution log (.flyai-execution-log.json) containing request/response data; confirm you are comfortable with local persistence of queries and results. 3) Ask the skill author to explain the advertised Fliggy/booking capabilities and what credentials (if any) they require — currently those claims are unsupported by the runtime instructions. 4) If you proceed, run the npm install in a controlled environment first (or review the package code) and watch for repeated CLI calls if the skill enforces re-execution until a link format appears.Like a lobster shell, security has layers — review code before you run it.
latestvk970hjwq5hc086f1s2n216pmfn84qv3e
License
MIT-0
Free to use, modify, and redistribute. No attribution required.