← Back to Skills Marketplace
Social Trust Manipulation Detector
by
andyxinweiminicloud
· GitHub ↗
· v1.0.0
470
Downloads
0
Stars
0
Active Installs
1
Versions
Install in OpenClaw
/install social-trust-manipulation-detector
Description
Helps identify coordinated social trust manipulation in agent marketplaces — catching reputation gaming through sockpuppet networks, coordinated upvoting, an...
Usage Guidance
This skill is coherent in intent but vague about where and how it will get the data it needs. Before installing, ask the publisher (or require the skill to document): 1) Which marketplace APIs or public endpoints it will query and provide example curl/python calls; 2) Whether it needs any API keys or elevated access (and if so, which exact environment variables will be required); 3) What personal or account-level data it will access, store, or include in reports (to assess privacy/PII risk); 4) Whether it will perform web scraping and whether that might violate the marketplace's terms of service. If you proceed, prefer running it in a sandboxed environment and only grant the minimal scoped credentials necessary (prefer read-only API keys with limited scope). If the publisher cannot clarify data sources and credential requirements, treat the skill as higher-risk and avoid granting broad permissions.
Capability Analysis
Type: OpenClaw Skill
Name: social-trust-manipulation-detector
Version: 1.0.0
The OpenClaw skill 'social-trust-manipulation-detector' is designed to identify coordinated social trust manipulation in agent marketplaces. The `SKILL.md` transparently describes its purpose, detection methods, usage, and provides an example report with recommended actions. There is no evidence of prompt injection, data exfiltration, malicious execution, persistence mechanisms, or obfuscation. The required binaries (`curl`, `python3`) are standard and plausible for a detection tool that might interact with APIs or process data. The skill's intent is clearly aligned with enhancing security by detecting reputation gaming.
Capability Assessment
Purpose & Capability
Name and description match the declared capabilities (analysis of upvotes, cohorts, reviews). Requiring curl and python3 is reasonable for fetching data and running analysis. However, the skill claims to analyze data (account creation dates, installs, cross-publisher overlap) that often requires privileged marketplace APIs or internal metrics but it declares no credentials or data source—this mismatch is notable.
Instruction Scope
SKILL.md is high-level and describes what to analyze but does not specify data sources, API endpoints, or exact commands. That vagueness gives the agent broad discretion to fetch data (e.g., by scraping web pages, crawling APIs, or trying to access internal endpoints), which increases the risk of accessing unrelated sensitive data or violating platform policies.
Install Mechanism
Instruction-only skill with no install spec and only two lightweight binaries (curl, python3) declared. No downloads or third-party packages are included, which is the lowest-risk install posture.
Credentials
The skill requests no environment variables or credentials, yet its stated analysis often requires access to non-public metrics (install counts, detailed voter metadata). The absence of declared auth tokens or scope descriptions is inconsistent: either the skill relies solely on public data (in which case capabilities are limited) or it will require sensitive credentials that are not declared.
Persistence & Privilege
always:false and no install hooks; the skill does not request forced or persistent inclusion. It does not ask to modify other skills or global agent settings in the provided instructions.
How to Use
- Make sure OpenClaw is installed (local or Docker)
- Run the install command in chat:
/install social-trust-manipulation-detector - After installation, invoke the skill by name or use
/social-trust-manipulation-detector - Provide required inputs per the skill's parameter spec and get structured output
Version History
v1.0.0
- Initial release of social-trust-manipulation-detector.
- Detects coordinated social trust manipulation in agent marketplaces.
- Analyzes engagement velocity, account cohort behavior, utility correlation, cross-publisher coordination, and review authenticity.
- Provides clear manipulation verdicts (e.g., AUTHENTIC, SUSPICIOUS, COORDINATED, MANUFACTURED).
- Designed to help users and moderators identify artificially inflated trust signals and prevent reputation gaming.
Metadata
Frequently Asked Questions
What is Social Trust Manipulation Detector?
Helps identify coordinated social trust manipulation in agent marketplaces — catching reputation gaming through sockpuppet networks, coordinated upvoting, an... It is an AI Agent Skill for Claude Code / OpenClaw, with 470 downloads so far.
How do I install Social Trust Manipulation Detector?
Run "/install social-trust-manipulation-detector" in the OpenClaw or Claude Code chat to install it in one step — no extra setup required.
Is Social Trust Manipulation Detector free?
Yes, Social Trust Manipulation Detector is completely free (open-source). You can download, install and use it at no cost.
Which platforms does Social Trust Manipulation Detector support?
Social Trust Manipulation Detector is cross-platform and runs anywhere OpenClaw / Claude Code is available (cross-platform).
Who created Social Trust Manipulation Detector?
It is built and maintained by andyxinweiminicloud (@andyxinweiminicloud); the current version is v1.0.0.
More Skills