ClawHub
Skill flagged — suspicious patterns detected

ClawHub Security flagged this skill as suspicious. Review the scan results before using.

cooking-skill

v0.1.0

Help users decide what to cook and how to cook it. Use when the user asks what to eat, what to cook with available ingredients, how to make a specific dish,...

0· 56·0 current·0 all-time
byZHANG Ning@zning1994
MIT-0
Download zip
LicenseMIT-0 · Free to use, modify, and redistribute. No attribution required.
Security Scan
VirusTotalVirusTotal
Suspicious
View report →
OpenClawOpenClaw
Suspicious
medium confidence
Purpose & Capability
Name and description align with the files and instructions: a recipe/technique recommender. It requests no env vars or external credentials and has no install. However, SKILL.md metadata lists allowed-tools including Bash, Write, and Edit — capabilities not needed for a read-only recipe helper and disproportionate to the stated purpose.
Instruction Scope
Runtime instructions are self-contained and limited to reading local reference files and producing recipe answers. The SKILL.md does not instruct the agent to read unrelated system files, access secrets, or call external endpoints. It asks the agent to read only the repository's references.
Install Mechanism
No install spec and no code files to execute were provided (instruction-only). This minimizes risk — nothing is downloaded or written at install time.
Credentials
The skill requires no environment variables, credentials, or config paths. The declared permissions are therefore not tied to any secret access and there are no disproportionate credential requests.
Persistence & Privilege
always:false and user-invocable:true are appropriate. However, the allowed-tools list grants the agent potential runtime privileges (running Bash, and writing/editing files) that increase its blast radius if invoked autonomously — the skill itself does not request persistent presence or modify other skills.
What to consider before installing
This skill appears to do what it says (give recipe recommendations and technique help) and has no external installs or credential requests. The main concern is the declared runtime permissions (Bash, Write, Edit) in SKILL.md — a cooking helper does not normally need to execute shell commands or edit files. Before installing, consider: 1) only install if you trust the author or the GitHub repo; review SKILL.md and the referenced files yourself; 2) if your platform lets you control skill permissions, remove or deny Bash/Write/Edit access so the skill can only Read; 3) run it in a sandboxed environment (or with limited agent privileges) if you plan to let the agent invoke skills autonomously; 4) watch for any future updates that add network endpoints, install steps, or credential requests. If you want, I can point out the exact lines that grant Bash/Write/Edit so you can request a slimmer permission set from the maintainer.

Like a lobster shell, security has layers — review code before you run it.

latestvk971s47nzrwb0h4nvn8zfy9va984b210

License

MIT-0
Free to use, modify, and redistribute. No attribution required.
Termshttps://spdx.org/licenses/MIT-0.html

Runtime requirements

OSmacOS · Linux · Windows

Comments