Skill flagged — suspicious patterns detected
ClawHub Security flagged this skill as suspicious. Review the scan results before using.
Academic Citation Manager
v1.0.0Add real references and standardize citations for research papers and theses (为科研论文和毕业论文添加真实参考文献并规范引用标注)
⭐ 2· 786·9 current·9 all-time
MIT-0
Download zip
LicenseMIT-0 · Free to use, modify, and redistribute. No attribution required.
Security Scan
OpenClaw
Benign
medium confidencePurpose & Capability
The name/description (citation manager) matches what the code and docs do: parse BibTeX/RIS/JSON/CSV, query Crossref/Open Library, generate in-text citations and bibliographies, and maintain a local reference database. Required resources (reading local document files, network calls to Crossref/Open Library) are expected for this purpose.
Instruction Scope
SKILL.md and code explicitly instruct the agent to read bibliography files and user documents (e.g., paper.docx) and to call Crossref/Open Library. Reading and processing user documents is within the declared scope, but users should be aware that the skill will access the content of any document you point it at (for integrity checking or citation extraction). There is no instruction in the provided materials to exfiltrate unrelated system files or credentials.
Install Mechanism
There is no install spec in registry metadata (instruction-only), but included Python code imports external libraries (requests) and appears to expect a normal Python runtime. The SKILL.md/completion notes mention 'pip install requests'. This is low risk but a minor mismatch: the skill does not declare dependencies formally in metadata, so the environment must supply/install standard Python packages before use.
Credentials
The skill requests no environment variables or credentials and the Crossref/Open Library integrations used do not require private API keys in the provided configuration. The local reference DB and cache settings are internal. There are no required credentials for unrelated services, and no evidence of requests for broad secrets in the files shown.
Persistence & Privilege
The skill stores a local reference database (reference_database.json / SQLite mentioned) and has auto-backup settings; it will write local files and cache API responses. always:false is correctly set. This local persistence is expected for a citation manager but users should expect files to be created/modified under the working directory (database, caches, backups, logs).
Assessment
This skill appears to do what it says: parse reference files, query Crossref/Open Library, and generate/format citations. Before installing or running it:
- Review and run the code in an isolated environment (virtualenv/container). It requires Python and common packages (requests); install dependencies from the source so you know what runs.
- Be aware the tool reads any document files you pass it (e.g., .docx, .bib) and will store a local database/cache and periodic backups in the working directory. If those documents contain sensitive information, do not point the tool at them.
- The skill makes outbound network calls to api.crossref.org and (per docs) Open Library; if you must restrict network access, run it offline or in a sandbox.
- No secret keys are required by the provided config, but if you modify or extend the skill to use other services, only supply credentials you trust and review where they are stored.
- If you have low tolerance for code risk, inspect the full academic_citation_skill.py and other scripts (the supplied files were trimmed in the listing) for any unexpected network endpoints, subprocess usage, or file-system access before use.Like a lobster shell, security has layers — review code before you run it.
academicvk978m197nsdshepescy6xkdvzn822ck8apavk978m197nsdshepescy6xkdvzn822ck8chicagovk978m197nsdshepescy6xkdvzn822ck8citationvk978m197nsdshepescy6xkdvzn822ck8latestvk978m197nsdshepescy6xkdvzn822ck8mlavk978m197nsdshepescy6xkdvzn822ck8referencevk978m197nsdshepescy6xkdvzn822ck8researchvk978m197nsdshepescy6xkdvzn822ck8
License
MIT-0
Free to use, modify, and redistribute. No attribution required.