← Back to Skills Marketplace
jiayao0810

skillhub-auto-installer

by Jiayao0810 · GitHub ↗ · v1.0.2 · MIT-0
cross-platform ⚠ suspicious
125
Downloads
0
Stars
1
Active Installs
3
Versions
Install in OpenClaw
/install skillhub-auto-installer
Description
搜索 Skillhub 技能市场,发现可用技能。 此技能仅提供搜索功能,不执行任何安装或本地文件操作。 关键词: skillhub, 搜索技能, findskill, 技能发现, 技能市场
Usage Guidance
Do not trust the 'read-only' claim without manual verification. The package contains multiple installer scripts (install.sh, secure-install.sh, pre-install-check.sh, security-check.sh) that will download and write code into a local workspace (e.g. /home/gem/workspace/agent) using 'npx ... skills add' and may execute audit scripts from downloaded skills. Before installing or running any scripts: 1) Inspect the scripts line-by-line to confirm what they do; 2) Only run the search script (search.sh) in a sandbox or non-production environment if you only want read-only behavior; 3) Do not run install/secure-install scripts unless you explicitly trust skills.volces.com and the target skill owner, and after manually reviewing the remote SKILL.md and code; 4) Prefer running manual install commands yourself rather than allowing the agent to run them; 5) Ask the skill author to clarify why installer scripts are bundled despite the read-only claim or to remove them if they are unnecessary. If the author confirms removal of installer scripts or updates the SKILL.md and metadata to accurately reflect capabilities, this assessment should be revisited.
Capability Analysis
Type: OpenClaw Skill Name: skillhub-auto-installer Version: 1.0.2 The bundle exhibits deceptive behavior by explicitly stating in SKILL.md that it 'does not execute any installation' and is 'search only,' while simultaneously providing multiple scripts (install.sh, secure-install.sh) that perform remote code installation via npx. Additionally, pre-install-check.sh forces the installation of a third-party 'security' tool (SkillSentry) from a specific external URL (https://skills.volces.com/skills/clawhub/poolguy24), which is a common social engineering tactic used to introduce secondary payloads under the guise of a security audit.
Capability Assessment
Purpose & Capability
The name/description and SKILL.md repeatedly state the skill only searches Skillhub and 'does not perform installation or local file operations', yet the repo includes install.sh, secure-install.sh, pre-install-check.sh and security-check.sh which run 'npx ... skills add', cd into /home/gem/workspace/agent, read/write the skills directory, and run local audit scripts. Requiring node/npx and network access makes sense for search, but presence of installation scripts is disproportionate to the claimed read-only purpose.
Instruction Scope
The runtime SKILL.md emphasizes read-only behavior and shows using search.sh, but the distributed files contain scripts that will perform installs, run remote downloads, execute audit scripts from downloaded content, and inspect local paths. The instructions also include manual install commands that would download/execute remote code. This contradicts the 'no local file system access / no installation' claims and grants the skill the ability to modify local state if those scripts are run.
Install Mechanism
There is no declared install spec, but the scripts rely on 'npx -y skills add' to pull code from https://skills.volces.com and copy it into a local skills directory. Using npx to fetch and extract remote skill packages is a moderate risk (downloads and writes remote code to disk). The host used is consistent across scripts (skills.volces.com) — not an obfuscated/personal IP — but scripts also hardcode paths like /home/gem/workspace/agent which is unexpected and brittle.
Credentials
Registry metadata lists no required env vars, but SKILL.md and scripts use SKILLS_API_URL and reference OPENCLAW_STATE_DIR and rely on node/npx. The SKILL.md declares node/npx/network as runtime dependencies but the package files also access and modify local filesystem paths and check for SkillSentry in various local locations — this local access is not reflected in the metadata and is inconsistent with the skill's stated 'no local access' promise.
Persistence & Privilege
always:false (normal). The scripts, if executed, write into the agent's skills directory and run installers that could add new skills to the environment. That grants the skill the ability to change agent state, but the package does not request 'always' or explicit elevated flags. Autonomous invocation is enabled by default; combined with the presence of install scripts this increases the blast radius if the agent were to run them without user confirmation.
How to Use
  1. Make sure OpenClaw is installed (local or Docker)
  2. Run the install command in chat: /install skillhub-auto-installer
  3. After installation, invoke the skill by name or use /skillhub-auto-installer
  4. Provide required inputs per the skill's parameter spec and get structured output
Version History
v1.0.2
skillhub-auto-installer v1.0.2 - 简化并精炼 SKILL.md,明确声明技能只用于搜索,不执行安装或本地操作 - 新增 scripts/search.sh 脚本,支持仅搜索 Skillhub 技能市场 - 移除安全审计和手动安装流程相关说明,聚焦只读搜索功能 - 强化安全说明,强调不会访问本地文件或读取配置
v1.0.1
**Summary:** This version clarifies scope and enhances installation safety guidance. - Updated documentation to state that the skill only searches and recommends skills—it no longer performs automatic installation. - Added section clearly requiring manual user confirmation and installation for all skills. - Included recommended secure installation procedure using SkillSentry. - Added `scripts/pre-install-check.sh` for pre-installation safety checks. - Expanded safety instructions and risk warnings for users.
v1.0.0
Skillhub Auto-Installer 1.0.0 - 全新发布:支持自动搜索、筛选并一键安装 Skillhub 技能 - 集成 SkillSentry,安装前后自动进行安全扫描与审计 - 智能匹配最适合用户需求的技能,并提供安全报告 - 支持关键词搜索、技能详情展示和结果筛选 - 提供命令行工具文档,支持手动安全检查
Metadata
Slug skillhub-auto-installer
Version 1.0.2
License MIT-0
All-time Installs 1
Active Installs 1
Total Versions 3
Frequently Asked Questions

What is skillhub-auto-installer?

搜索 Skillhub 技能市场,发现可用技能。 此技能仅提供搜索功能,不执行任何安装或本地文件操作。 关键词: skillhub, 搜索技能, findskill, 技能发现, 技能市场. It is an AI Agent Skill for Claude Code / OpenClaw, with 125 downloads so far.

How do I install skillhub-auto-installer?

Run "/install skillhub-auto-installer" in the OpenClaw or Claude Code chat to install it in one step — no extra setup required.

Is skillhub-auto-installer free?

Yes, skillhub-auto-installer is completely free, licensed under MIT-0. You can download, install and use it at no cost.

Which platforms does skillhub-auto-installer support?

skillhub-auto-installer is cross-platform and runs anywhere OpenClaw / Claude Code is available (cross-platform).

Who created skillhub-auto-installer?

It is built and maintained by Jiayao0810 (@jiayao0810); the current version is v1.0.2.

More Skills
self-improving agent
Captures learnings, errors, and corrections to enable continuous improvement. Use when: (1) A command or operation fails unexpectedly, (2) User corrects Clau...
⬇ 463556 · by pskoett
Skill Vetter
Security-first skill vetting for AI agents. Use before installing any skill from ClawdHub, GitHub, or other sources. Checks for red flags, permission scope, and suspicious patterns.
⬇ 259610 · by spclaudehome
Polymarket
Query Polymarket prediction markets. Check odds, find trending markets, search events, track price movements.
⬇ 232503 · by joelchance
Self-Improving + Proactive Agent
Self-reflection + Self-criticism + Self-learning + Self-organizing memory. Agent evaluates its own work, catches mistakes, and improves permanently. Use when...
⬇ 200551 · by ivangdavila
Github
Interact with GitHub using the `gh` CLI. Use `gh issue`, `gh pr`, `gh run`, and `gh api` for issues, PRs, CI runs, and advanced queries.
⬇ 191226 · by steipete
ontology
Typed knowledge graph for structured agent memory and composable skills. Use when creating/querying entities (Person, Project, Task, Event, Document), linkin...
⬇ 190235 · by oswalpalash

💬 Comments