Skip to content
← Registry
Trust Report

ssh-essentials

Essential SSH commands for secure remote access, key management, tunneling, and file transfers.

59
SUSPICIOUS
Format: openclawScanner: v0.8.0Duration: 14msScanned: 8d ago · May 30, 7:32 AMSource →
Open community →Automate with the API →Join the discussion →Jump to findings →
Embed this badge
AgentVerus SUSPICIOUS 59AgentVerus SUSPICIOUS 59AgentVerus SUSPICIOUS 59
[![AgentVerus](https://agentverus.ai/api/v1/skill/82fa66ef-16fe-461b-8138-6029b1d6f99c/badge)](https://agentverus.ai/skill/82fa66ef-16fe-461b-8138-6029b1d6f99c)
Community Discussion

Community Comments

Public comments are the active feedback surface on skill reports right now. Use them to share implementation notes, edge cases, and operator context.

0 comments

Sign in to comment on this skill

No comments yet. Be the first to share your thoughts.

Continue the workflow

Keep this report moving through the activation path: rescan from the submit flow, capture real-world interactions, and wire the trust endpoint into your automation.

Rescan this skill →Record an interaction →Open comments →Automate this report →
https://agentverus.ai/api/v1/skill/82fa66ef-16fe-461b-8138-6029b1d6f99c/trust
Personalized next commands

Use these current-skill command blocks to keep this exact report moving through your workflow.

Record an interaction
curl -X POST https://agentverus.ai/api/v1/interactions \
  -H "Authorization: Bearer at_your_api_key" \
  -H "Content-Type: application/json" \
  -d '{"agentPlatform":"openclaw","skillId":"82fa66ef-16fe-461b-8138-6029b1d6f99c","interactedAt":"2026-03-15T12:00:00Z","outcome":"success"}'
Fetch trust JSON
curl https://agentverus.ai/api/v1/skill/82fa66ef-16fe-461b-8138-6029b1d6f99c/trust

Category Scores

51
Permissions
34
Injection
79
Dependencies
83
Behavioral
65
Content
100
Code Safety

Findings (16)

highCapability contract mismatch: inferred credential access is not declared-15

The scanner inferred a risky capability from the skill content/metadata, but no matching declaration was found. Add a declaration with a clear justification, or remove the behavior.

Content pattern: ~/.ssh/config

Declare this capability explicitly in frontmatter permissions with a specific justification, or remove the risky behavior.

permissionsASST-05
highCapability contract mismatch: inferred command execution is not declared-12

The scanner inferred a risky capability from the skill content/metadata, but no matching declaration was found. Add a declaration with a clear justification, or remove the behavior.

Content pattern: Shell

Declare this capability explicitly in frontmatter permissions with a specific justification, or remove the risky behavior.

permissionsASST-03
highComprehensive secret collection detected-25

Found comprehensive secret collection pattern: "all keys"

# Remove all keys

Skills should not instruct collection of all tokens, keys, or credentials. Access only the specific credentials needed and declare them.

injectionASST-05
highComprehensive secret collection detected-25

Found comprehensive secret collection pattern: "List keys"

# List keys in agent

Skills should not instruct collection of all tokens, keys, or credentials. Access only the specific credentials needed and declare them.

injectionASST-05
mediumCapability contract mismatch: inferred file write is not declared-8

The scanner inferred a risky capability from the skill content/metadata, but no matching declaration was found. Add a declaration with a clear justification, or remove the behavior.

Content pattern: Create remote directory

Declare this capability explicitly in frontmatter permissions with a specific justification, or remove the risky behavior.

permissionsASST-03
mediumCapability contract mismatch: inferred network access is not declared-6

The scanner inferred a risky capability from the skill content/metadata, but no matching declaration was found. Add a declaration with a clear justification, or remove the behavior.

Content pattern: https://www.openssh.com/

Declare this capability explicitly in frontmatter permissions with a specific justification, or remove the risky behavior.

permissionsASST-04
mediumCapability contract mismatch: inferred local service access is not declared-8

The scanner inferred a risky capability from the skill content/metadata, but no matching declaration was found. Add a declaration with a clear justification, or remove the behavior.

Content pattern: http://localhost:8080

Declare this capability explicitly in frontmatter permissions with a specific justification, or remove the risky behavior.

permissionsASST-03
mediumCredential access detected (inside code block)-8

Found credential access pattern: "~/.ssh/id_rsa"

ssh -i ~/.ssh/id_rsa user@hostname

Remove references to credentials and secrets. Skills should never access sensitive authentication data.

injectionASST-05
mediumSystem modification detected (inside code block)-6

Found system modification pattern: "systemctl restart"

sudo systemctl restart sshd

Skills should not modify system configuration or install packages globally. Bundle required dependencies.

behavioralASST-03
mediumHigh-risk workflow lacks explicit safety boundaries-15

The skill performs or enables higher-risk operations but does not define explicit safety boundaries describing what it must not do.

No safety boundary patterns found alongside high-risk capability language

Add a 'Safety Boundaries' section listing what the skill must NOT do (e.g., no file deletion, no network access beyond needed APIs).

contentASST-09
mediumCredential access detected (inside code block)-8

Found credential access pattern: "cat ~/.ssh/id_rsa"

cat ~/.ssh/id_rsa.pub | ssh user@hostname 'cat >> ~/.ssh/authorized_keys'

Remove references to credentials and secrets. Skills should never access sensitive authentication data.

injectionASST-05
mediumSystem modification detected (inside code block)-6

Found system modification pattern: "edit /etc"

# Disable password authentication (edit /etc/ssh/sshd_config)

Skills should not modify system configuration or install packages globally. Bundle required dependencies.

behavioralASST-03
mediumLocal service URL reference-8

The skill references a localhost or private-network service URL which is classified as medium risk.

http://localhost:8080

Review localhost/private-network service references carefully. Local service URLs can expose internal apps, admin panels, or developer tooling to agent-driven workflows.

dependenciesASST-04
mediumUnknown external reference-8

The skill references an unknown external domain which is classified as medium risk.

https://www.openssh.com/manual.html

Verify that this external dependency is trustworthy and necessary.

dependenciesASST-04
mediumLocal service access detected (inside code block)-5

Found local service access pattern: "http://localhost:8080"

# Access via: http://localhost:8080

Treat localhost and loopback services as privileged local attack surfaces. Require explicit approval, constrain reachable ports, and avoid combining local access with session reuse or tunneling.

behavioralASST-03
lowUnknown external reference-5

The skill references an unknown external domain which is classified as low risk.

https://www.openssh.com/

Verify that this external dependency is trustworthy and necessary.

dependenciesASST-04