Skillv1.0.0

ClawScan security

policy-to-checklist · ClawHub's context-aware review of the artifact, metadata, and declared behavior.

BenignMar 11, 2026, 8:37 AM

Verdict: benign
Confidence: high
Model: gpt-5-mini
Summary: The skill does what it says: it reads text from the macOS clipboard and helps turn notices/rules into a checklist; its requirements and code match that purpose.
Guidance: This skill is internally consistent, but it reads your macOS clipboard and prints its raw contents. Before running it: (1) ensure you're on macOS (requires pbpaste); (2) verify clipboard contents do not contain passwords, tokens, or other secrets; (3) review scripts/read_clipboard.mjs (it is short and just calls pbpaste); (4) if you prefer safer operation, paste the text into the agent's prompt manually or modify the script to prompt for confirmation, redact sensitive fields, or read from a file. The skill itself does not transmit data externally, but the agent may include clipboard contents in model messages—treat that as a potential data exposure vector.

Purpose & Capability: okThe skill's stated goal is to convert notices/rules into checklists. The only required binaries are node and pbpaste, which are appropriate for reading the macOS clipboard and processing text. No unrelated credentials, binaries, or config paths are requested.
Instruction Scope: noteSKILL.md explicitly tells the agent to run scripts/read_clipboard.mjs. That script runs pbpaste (via child_process.execSync) and prints the raw clipboard contents between markers. This is coherent with the stated purpose, but reading the system clipboard can expose sensitive data — the script does not filter, redact, or prompt before printing clipboard contents.
Install Mechanism: okThere is no install spec and only a small included JS script; no external downloads, package installs, or archive extraction are performed.
Credentials: okNo environment variables, credentials, or config paths are requested. The requirement set is minimal and proportionate to the task (reading clipboard + processing text).
Persistence & Privilege: okalways is false and the skill does not request persistent or elevated privileges, nor does it modify other skills or system-wide configuration.