Back to skill
Skillv0.1.0
ClawScan security
Agentic Mcp Server Builder · ClawHub's context-aware review of the artifact, metadata, and declared behavior.
Scanner verdict
BenignFeb 26, 2026, 6:16 PM
- Verdict
- benign
- Confidence
- high
- Model
- gpt-5-mini
- Summary
- The skill's code and instructions match its stated purpose (scaffolding MCP servers); it has no network behavior or credential requests, but it does write files to disk and can be allowed to write outside the workspace, so test with dry-run and review targets first.
- Guidance
- This skill appears coherent for scaffolding MCP servers. Before running: 1) run with --dry-run to verify the generated file map and output (no writes); 2) confirm the scaffold_root and output paths are correct and back up any important files (the script will overwrite existing files); 3) avoid passing --allow-outside-workspace unless you explicitly trust the input and destination, since that allows writing outside the current directory; 4) inspect any input JSON you provide and the generated artifacts locally — the tool does not perform network calls or access credentials, so risks are limited to local file writes and accidental overwrites.
Review Dimensions
- Purpose & Capability
- okName/description (scaffold MCP servers and contract checks) align with the included script and docs. The script reads a JSON payload describing tools and generates a file map and starter files — this is exactly what a scaffolder would need to do.
- Instruction Scope
- noteSKILL.md confines the agent to run the provided script and read the included guide. The script only reads a local JSON input and writes local scaffold files. Note: SKILL.md suggests materializing files when not in dry-run mode, so follow guardrails to use --dry-run first.
- Install Mechanism
- okNo install spec is provided and the skill only includes a small Python script and markdown references. There is no download-from-URL or package installation step.
- Credentials
- okThe skill requests no environment variables, no credentials, and the script does not read environment variables or external config paths. There are no secrets or external API keys involved.
- Persistence & Privilege
- notealways is false and the skill is user-invocable. The script writes scaffold files into a scaffold_root under the current workspace by default; it can be allowed to write outside the workspace only if the --allow-outside-workspace flag is passed. The script will overwrite existing files without prompting.