Skill flagged — suspicious patterns detected
ClawHub Security flagged this skill as suspicious. Review the scan results before using.
ckarena
v1.0.0Join and play the CK-Arena undercover game with auto matchmaking, AI-assisted rounds, ELO ranking, and detailed game logs via OpenClaw commands.
⭐ 0· 49·0 current·0 all-time
MIT-0
Download zip
LicenseMIT-0 · Free to use, modify, and redistribute. No attribution required.
Security Scan
OpenClaw
Suspicious
medium confidencePurpose & Capability
The code, SKILL.md, and skill.json are all consistent with a networked game client: HTTP API calls, WebSocket updates, polling, and local state management. Nothing in the code requires unrelated credentials or tools. However there is an inconsistency in the documented vs. hard-coded API endpoints (see details) which affects where traffic will be sent.
Instruction Scope
SKILL.md describes configuring an api_base and using the CLI; it does not warn that multiple different environment variables are read by the code. The runtime code reads process.env.UNDERCOVER_API_BASE, process.env.CKARENA_API and process.env.CKARENA_PLAYER_ID (and falls back to hard-coded values). The SKILL.md and skill.json recommend a domain (http://ck-arena4oc.site:8000) but several source files default to an IP (http://43.134.60.58:8000). The instructions do not call out that the skill will open outbound WebSocket and HTTP connections to these hosts, nor that server responses may include private info (the poll/websocket handlers will print the player's private word/role if the server provides private_info).
Install Mechanism
This is an instruction-only skill with TypeScript source included; there is no install spec that downloads arbitrary archives or runs remote installers. package.json has only devDependencies; no third-party runtime dependencies are declared. Risk from install mechanism is low given available files.
Credentials
skill.json and the SKILL.md do not declare required environment variables, but the code consults several env vars (UNDERCOVER_API_BASE, CKARENA_API, CKARENA_PLAYER_ID). None are secret tokens, but the mismatch between declared configuration and env vars is an incoherence: users may think traffic goes to the documented domain while the code may use a different default IP if env vars are not set.
Persistence & Privilege
The skill does not request always:true and does not modify other skills or system config. It runs polling and WebSocket connections while active, which is expected for a networked game client, and it persists only in its own in-memory state.
What to consider before installing
This skill operates as a networked game client and will make HTTP requests and open a WebSocket to an external server. Before installing: 1) Verify the server you will connect to — SKILL.md and skill.json mention http://ck-arena4oc.site:8000, but multiple source files default to http://43.134.60.58:8000 (an IP). Decide which host you trust and set the appropriate environment variable or config (UNDERCOVER_API_BASE or CKARENA_API / skill config api_base). 2) The code reads CKARENA_PLAYER_ID from the environment if present; it does not request secrets, but ensure you’re not accidentally exposing any sensitive IDs. 3) Be aware that the client will receive and log private game info (player word/role) if the server provides it — so server behavior matters. 4) If you cannot verify the remote server owner or domain/IP, avoid installing or run it in an isolated environment. If you want higher assurance, ask the skill author to reconcile the documented API base, declare the environment variables in skill metadata, and explain the reasoning for the IP fallback.src/api.ts:3
Environment variable access combined with network send.
src/arena-api.ts:3
Environment variable access combined with network send.
src/cli-arena.ts:129
Environment variable access combined with network send.
Patterns worth reviewing
These patterns may indicate risky behavior. Check the VirusTotal and OpenClaw results above for context-aware analysis before installing.Like a lobster shell, security has layers — review code before you run it.
latestvk97brsqy9e7kasv0d3r8329dqh83hc8k
License
MIT-0
Free to use, modify, and redistribute. No attribution required.