False positive: 'azure-bing-grounding' flagged as suspicious on ClawHub

[BoWang306]

Hello OpenClaw Security Team,

My recently published skill azure-bing-grounding has been automatically flagged as suspicious on ClawHub. I believe this is a false positive.

Why it was likely flagged:

The underlying python script (scripts/bing_grounding.py) manually reads the ~/.openclaw/.env file to load Azure credentials (AZURE_CLIENT_ID, AZURE_CLIENT_SECRET, AZURE_TENANT_ID) and subsequently uses them with the official azure-identity and azure-ai-agents Python SDKs.

Why it is safe:

1. The script only communicates with the user-provided FOUNDRY_PROJECT_ENDPOINT (an official Azure domain).
2. It does not exfiltrate any environment variables or credentials to third-party or arbitrary endpoints.
3. The credential loading logic is strictly used to instantiate Azure's ClientSecretCredential.

Could you please review the source code on ClawHub (or the linked GitHub repo: BoWang306/azure-bing-grounding-skill) and remove the security flag?

Thank you!

[steipete]

Closing this as better suited for ClawHub/community plugin work after Codex review.

Issue #54820 is a ClawHub marketplace moderation appeal, not an OpenClaw core issue. Current main documents ClawHub as a separate service/repo for publishing and moderation workflows, while this repo only contains client/install integration and docs.

What I checked:

• Vision scope keeps skills on ClawHub, not OpenClaw core: VISION.md says new skills should be published to ClawHub first and that new core skills that can live on ClawHub are out of scope for this repo. (VISION.md:69, a6aa151653ab)
• ClawHub service workflows are separate from native OpenClaw flows: The ClawHub docs say publish/delete/undelete/sync workflows use the separate clawhub CLI, while native openclaw commands just consume the registry. Public docs: docs/tools/clawhub.md. (docs/tools/clawhub.md:14, a6aa151653ab)
• Moderation actions belong to ClawHub moderators: The ClawHub docs describe reporting and moderation as ClawHub responsibilities, including moderator hide/unhide/delete/ban actions. Public docs: docs/tools/clawhub.md. (docs/tools/clawhub.md:157, a6aa151653ab)
• Repository routing points ClawHub issues to the separate repo: The contribution guide explicitly routes ClawHub security/issues to openclaw/clawhub, separate from openclaw/openclaw. (CONTRIBUTING.md:213, a6aa151653ab)
• Current code is a client for the external ClawHub service: src/infra/clawhub.ts is an API client pointed at https://clawhub.ai; there is no ClawHub moderation service implementation in this checkout to action a marketplace flag removal. (src/infra/clawhub.ts:14, a6aa151653ab)

So I’m closing this as a scope-fit item for the plugin/community path rather than keeping it open as an OpenClaw core request.

Review notes: reviewed against a6aa151653ab.