rubric-gap-analyzer
PassAudited by ClawScan on May 10, 2026.
Overview
This skill appears purpose-aligned: it reads the Mac clipboard to analyze a rubric, but users should only run it after copying the intended text.
This skill is reasonable for rubric analysis. The main thing to watch is clipboard privacy: it will read and display whatever is currently on your Mac clipboard, so copy only the rubric or assignment text you intend to analyze before using it.
Findings (2)
Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.
The skill runs a local command to read the clipboard when invoked.
The script uses shell command execution to invoke `pbpaste`. The command is fixed and purpose-aligned, but it is still local command execution.
return execSync("pbpaste", { encoding: "utf8" }).trim();Run it only when you intentionally want the current clipboard contents used for analysis.
If your clipboard contains private notes, credentials, or unrelated material, that text may be shown to the agent.
The script prints the entire clipboard text into the agent context for analysis. This is expected for the skill, but unintended clipboard contents could be exposed to the conversation.
console.log(text);
Before invoking the skill, copy only the rubric or assignment text you want analyzed, or paste the content manually instead.