Skill flagged — suspicious patterns detected
ClawHub Security flagged this skill as suspicious. Review the scan results before using.
Wukong — 名人思维蒸馏框架(72变版)
v1.0.0名人思维蒸馏与召唤技能。当用户需要用某位名人的思维方式分析问题、制定决策时激活。 触发词:召唤/蒸馏/思维模型/Think Like/像XX一样/XX会怎么做/心智模型/认知框架/决策参考。 支持任意历史人物、商界领袖、科学家、艺术家等。
⭐ 0· 63·0 current·0 all-time
bymingyuan@zmy1006-sudo
MIT-0
Download zip
LicenseMIT-0 · Free to use, modify, and redistribute. No attribution required.
Security Scan
OpenClaw
Suspicious
medium confidencePurpose & Capability
Name/description (distill and summon famous-people thinking models) match the instructions and included persona examples. Declared requirements (no env vars, no binaries) are proportionate to the stated purpose.
Instruction Scope
The SKILL.md instructs the agent to read and write persona files under wukong/personas/ and update wukong/registry.md. It also requires citing representative sources when listing examples but provides no mechanism to fetch or verify those sources. This raises two issues: (1) persistent storage of user-provided or agent-generated content (including potentially sensitive examples or user case details) without any retention, access-control, or sanitization guidance; (2) risk of fabricated/unsupported citations because the instructions ask for '标注来源' but don't constrain how sources are obtained or verified. Both create privacy and provenance/quality risks even though they are coherent with the skill's purpose.
Install Mechanism
Instruction-only skill with no install spec and no external downloads — lowest technical install risk. Nothing is written to disk by an installer; the only persistence comes from the agent following SKILL.md file-writing instructions at runtime.
Credentials
The skill requests no environment variables, credentials, or config paths. There are no unexplained credential requests and no indication it will reach out to external services.
Persistence & Privilege
The skill intentionally writes persistent files under wukong/personas/ and modifies wukong/registry.md (its own workspace). That is expected for this capability, but the SKILL.md lacks any guidance about retention, user consent before saving, or redaction of sensitive content. If the agent runs autonomously later, it may re-use stored persona files and thereby re-expose previously persisted content.
What to consider before installing
This skill appears to do what it says (create and reuse 'persona' files), but it will save distilled models and any example/user content into the agent workspace without telling you how long they will be kept or who can read them. Before installing or using it: (1) avoid pasting private data or secrets into prompts that will be stored; (2) review and periodically delete or audit files in wukong/personas/ and wukong/registry.md; (3) be aware the agent may invent or misattribute 'sources' unless you require verifiable links—consider asking the agent to only include verifiable citations and to mark speculative material clearly; (4) if you need stricter controls, request the skill be updated to prompt for explicit consent before saving, to redact PII, and to store provenance metadata (URLs/timestamps) for each citation. These steps reduce privacy and misinformation risks.Like a lobster shell, security has layers — review code before you run it.
decisionvk979h943yycjcprz6xd964c42984ce37latestvk979h943yycjcprz6xd964c42984ce37mental-modelvk979h943yycjcprz6xd964c42984ce37personavk979h943yycjcprz6xd964c42984ce37thinkingvk979h943yycjcprz6xd964c42984ce37
License
MIT-0
Free to use, modify, and redistribute. No attribution required.