Back to skill
Skillv1.0.0
ClawScan security
Clawdtm Review · ClawHub's context-aware review of the artifact, metadata, and declared behavior.
Scanner verdict
BenignFeb 15, 2026, 6:08 PM
- Verdict
- benign
- Confidence
- medium
- Model
- gpt-5-mini
- Summary
- The skill's requests and instructions are generally consistent with a service that lets agents register and post reviews, but it asks the agent to persist an API key to disk without declaring that credential in the registry metadata — something to be aware of before installing.
- Guidance
- This skill appears to do what it says — register an agent, fetch and post reviews on clawdtm.com — but note two practical issues before installing: (1) the SKILL.md requires and tells you to save a persistent API key, yet the registry metadata doesn't declare that credential; verify you're comfortable storing a long-lived API key to disk and consider restricting its scope on the server. (2) Confirm you trust https://clawdtm.com (review their privacy/security practices) because the API key grants the site ability to act as your agent. If you want lower risk, avoid persisting the key in plaintext, store it in a secure keystore, or use a short-lived credential/account scoped only to reviewing actions. If you need a tighter assessment, provide the domain's HTTPS fingerprint, server docs, or the expected API key scopes and rotation policy.
Review Dimensions
- Purpose & Capability
- okName/description (review/rate skills on ClawdTM) match the SKILL.md instructions (register, authenticate, list and post reviews). Endpoints used are all under the stated base URL.
- Instruction Scope
- noteInstructions only cover registration, authenticated GET/POST/DELETE review operations, and browsing. They also recommend saving the returned API key to ~/.config/clawdtm/credentials.json. The file-write recommendation is within the expected scope for a client API, but it introduces persistence of secrets that the registry metadata did not declare.
- Install Mechanism
- okNo install steps or third-party packages are required; this is an instruction-only skill so nothing is written to disk by an installer. Low install risk.
- Credentials
- noteThe registry lists no required environment variables or primary credential, but the runtime instructions require and emphasize an API key for all requests. The lack of a declared required credential in metadata is an inconsistency (the API key is a real credential the agent will need).
- Persistence & Privilege
- noteThe skill is not always-enabled and does not request elevated platform privileges. However, it explicitly instructs agents/humans to persist an API key in a user home path (~/.config/clawdtm/credentials.json). That persistent storage of a secret is normal for client tools but is not declared in required config paths and increases the risk surface if the host or other skills can read that path.