Doc Gap Finder

PassAudited by ClawScan on May 1, 2026.

Overview

This skill is a coherent, read-only document-audit helper that scans user-provided local documentation and produces review reports without evidence of hidden networking, credential use, or destructive behavior.

This skill appears safe for ordinary documentation audits. Before installing or using it, make sure you only point it at documentation directories you are allowed to inspect, and review any generated report before sharing because it may contain local file names or headings.

Findings (1)

Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.

Low

#ASI02: Tool Misuse and Exploitation

What this means

If pointed at a broad or sensitive folder, the report may include file names, headings, or metadata from local private documents.

Why it was flagged

The helper script recursively samples text-like files from a user-provided directory. This is expected for a documentation audit skill, but it means the chosen directory should be scoped carefully.

Skill content

for path in root.rglob("*"):
        if len(results) >= limit:
            break
        if path.is_file():
            if path.suffix.lower() in {".md",".txt",".json",".yaml",".yml",".py",".js",".ts",".csv",".tsv",".sh"}:

Recommendation

Run it only on documentation folders you intend to audit, review the generated report before sharing it, and avoid unauthorized or sensitive directories.