ClawHub
Skill flagged — suspicious patterns detected

ClawHub Security flagged this skill as suspicious. Review the scan results before using.

CHIS/CHISF

v1.0.2

Standardized skill install workflow using short aliases (chis/chisf) with force + force-install + workspace-aware lookup.

0· 344·0 current·0 all-time
byZephyr Ray@zququ
MIT-0
Download zip
LicenseMIT-0 · Free to use, modify, and redistribute. No attribution required.
Security Scan
VirusTotalVirusTotal
Suspicious
View report →
OpenClawOpenClaw
Suspicious
medium confidence
!
Purpose & Capability
The skill's stated purpose is to standardize installs via clawhub, but the metadata declares no required binaries while both SKILL.md and the included shell script assume the 'clawhub' command (and optionally a local fallback at /Users/zququ/.local/bin/clawhub-install-safe). The absence of 'clawhub' in required binaries is an incoherence.
!
Instruction Scope
Instructions are limited to running clawhub install/inspect, which matches the purpose, but they also (a) hard-code an author-specific default workdir (/Users/zququ/.openclaw/workspace), and (b) explicitly recommend using --force to install packages even when 'flagged as suspicious', which encourages bypassing safety checks and is a policy risk.
Install Mechanism
No install spec — this is an instruction-only skill with a simple included bash script. There are no downloads or archive extracts, so the install mechanism itself is low-risk and consistent with the stated function.
Credentials
The skill does not request credentials or environment variables, which is proportional. However, it references specific filesystem paths in examples and a local fallback binary path that are tied to the packager's home directory; this is unusual and could cause accidental writes or execution in unexpected locations.
Persistence & Privilege
The skill does not request permanent presence (always is false) and is user-invocable. It does not modify other skills or system configuration in its instructions; persistence/privilege demands are reasonable.
What to consider before installing
This skill is essentially a shortcut for running 'clawhub' install/inspect commands, but there are a few red flags to consider before installing or running it: - Verify you have and trust the 'clawhub' binary. The skill assumes clawhub exists but the metadata does not declare it. If you install this skill, ensure 'clawhub' is the expected, official tool on your system. - Be cautious about the advice to use --force on 'flagged' packages. Force-installing packages that are flagged as suspicious bypasses safety checks and can install malicious code; prefer to inspect packages and understand why they were flagged before forcing installation. - The script and docs use a hard-coded home path (/Users/zququ/...). Update the default workdir to a path appropriate for your machine or always pass an explicit --workdir to avoid accidental writes to an unexpected location. - The SKILL.md mentions a local fallback binary (/Users/zququ/.local/bin/clawhub-install-safe). If such a binary exists on your system, inspect it before running it — do not execute unknown local binaries without review. If you want to use this skill: (1) edit the script or wrapper to remove or replace hard-coded paths, (2) add 'clawhub' to the declared required binaries, and (3) avoid blindly following the recommendation to force-install flagged packages. These changes would make the skill much more trustworthy.

Like a lobster shell, security has layers — review code before you run it.

latestvk97ar71sv20pc3esd9xefqmgk581xkhw

License

MIT-0
Free to use, modify, and redistribute. No attribution required.
Termshttps://spdx.org/licenses/MIT-0.html

SKILL.md

CHIS / CHISF

A lightweight skill to standardize how we install/manage OpenClaw skills.

Core idea

  • chis <slug> [workdir] [version] = install a skill from ClawHub.
  • chisf <slug> [workdir] [version] = force-install when the package is flagged/requires overwrite.
  • clawhub inspect <slug> = inspect before install (recommended for validation).
  • Always run installs with explicit workdir and skills dir to avoid path confusion.

Default workdir in examples: /Users/zququ/.openclaw/workspace.

Default command mapping

1) Standard install

clawhub install <slug> --workdir /Users/zququ/.openclaw/workspace --dir skills --version <version>
  • Omit --version for latest.
  • If no version argument, installs latest available.

2) Force install

clawhub install <slug> --force --workdir /Users/zququ/.openclaw/workspace --dir skills --version <version>

Use this when:

  • package is flagged as suspicious
  • overwrite behavior is required

3) Inspect before install (recommended)

clawhub inspect <slug>

4) Verify

clawhub list --workdir /Users/zququ/.openclaw/workspace --dir skills

CHIS aliases

Use these shortcuts in practice:

  • chis <slug> → same as standard install in default workspace.
  • chisf <slug> → same as force install in default workspace.
  • If needed, set your session path context and explicitly pass an alternate path:
    • chis --workdir /alt/path <slug>
    • chisf --workdir /alt/path <slug>

Failure handling

  1. If Rate limit exceeded: retry after a few minutes.
  2. If command fails due to path mismatch: ensure you are checking with same --workdir and --dir skills used during install.
  3. If package not found: confirm correct slug via clawhub search <keyword>.

Safe defaults for this environment

  • Use:

    • --workdir /Users/zququ/.openclaw/workspace
    • --dir skills

  • Already-known working example:

clawhub install proactive-agent --force --workdir /Users/zququ/.openclaw/workspace --dir skills

Notes

  • CHISF is a human-facing label I use for force-install style operations.
  • Keep all install actions explicit and repeatable; never rely on default working dir.
  • Failure handling
    • If install fails, run clawhub inspect <slug> --workdir /Users/zququ/.openclaw/workspace --dir skills for a quick pre-check.
    • If it still fails due to environment mismatch, re-run with explicit --workdir /Users/zququ/.openclaw/workspace and --dir skills (never rely on implicit defaults).
  • For suspected API/service issues (e.g., rate limit exceeded), prefer 10–20 minute pause and retry.
  • If rate limit persists, use the local fallback installer: /Users/zququ/.local/bin/clawhub-install-safe --force <slug> <workdir> (or without --force when not needed) before switching to another approach.
  • Keep the same --workdir and --dir skills/registry context when re-running.

Files

3 total
Select a file
Select a file to preview.

Comments

Loading comments…