ClawHub
Skill flagged — suspicious patterns detected

ClawHub Security flagged this skill as suspicious. Review the scan results before using.

三省六部

v1.0.0

🏛️ 三省六部制 · OpenClaw Multi-Agent Orchestration System — 9 specialized AI agents with real-time dashboard, model config, and full audit trails. Use when: (1)...

0· 142·0 current·0 all-time
byAche@zhmza
MIT-0
Download zip
LicenseMIT-0 · Free to use, modify, and redistribute. No attribution required.
Security Scan
VirusTotalVirusTotal
Benign
View report →
OpenClawOpenClaw
Suspicious
high confidence
!
Purpose & Capability
The SKILL.md and README describe a full-featured Edict Python library (EdictSystem, provinces, dashboard, audit, model routing). However the bundle does not contain an edict Python package or server implementation—only scripts, docs, config examples and tests that import edict. skill.json references a GitHub repo and a pip package name, but the actual implementation code is missing from the skill. That inconsistency means the claimed capability is not present in the bundle and would rely on fetching external packages.
!
Instruction Scope
Runtime artifacts (scripts/start.sh and scripts/install.sh) instruct the environment to pip-install dependencies, create ~/.edict directories, write a default config (including placeholders for API keys/webhooks), and run python code that imports EdictSystem from an edict module. The SKILL.md examples assume access to model providers and webhooks. The instructions will write persistent config/log files and attempt to import/run a package that is not included—this mixture of actions goes beyond a simple doc-only skill and requires caution.
Install Mechanism
There is no formal install spec in the registry, but provided scripts call pip to install dependencies (pyyaml, requests, flask, prometheus-client) and create files under ~/.edict. The install path uses standard PyPI packages (moderate risk). No third-party binary downloads or URL-shortened artifacts are used, but the scripts will create persistent files in the user's home and may perform network installs when run.
!
Credentials
The skill declares no required environment variables, but the example configuration (assets/config-example.yaml and SKILL.md) references secrets/env placeholders such as ${OPENAI_API_KEY}, ${ANTHROPIC_API_KEY}, and ${SLACK_WEBHOOK_URL}. That is a mismatch: the skill will expect third-party API credentials for its intended use but does not declare them. Users could be prompted to provide sensitive keys without that being surfaced by the registry metadata.
Persistence & Privilege
The scripts create persistent files and directories under the user's home (~/.edict), create a startup script (~/.edict/start.sh), and set long audit retention in the default config. always is false and the skill does not request elevated system privileges, but it does establish persistent presence in the user's home directory and will run pip installs if executed.
What to consider before installing
Do not run the provided install/start scripts or pip-install packages from this bundle until you verify provenance. The skill claims a full 'edict' Python package, but that implementation is missing from the bundle—install scripts will create ~/.edict, write configs that refer to OPENAI/ANTHROPIC API keys and Slack webhooks, and invoke pip. Actions to take before proceeding: (1) verify the upstream repository and package (skill.json points to github.com/cft0808/edict) and inspect the actual edict package code; (2) confirm which environment variables/secrets are required and prefer providing them in a controlled environment (virtualenv/container) rather than your host; (3) run install/start inside a sandbox or VM if you must evaluate; (4) if you expect a pure documentation skill, ask the publisher why the implementation is absent and why required credentials aren't declared. The mismatches (missing package + undocumented secret usage + persistent file writes) justify treating this skill as suspicious until clarified.

Like a lobster shell, security has layers — review code before you run it.

latestvk97ecky3t3m2jr719f9x9s0sfn83xz6b

License

MIT-0
Free to use, modify, and redistribute. No attribution required.
Termshttps://spdx.org/licenses/MIT-0.html

Comments