Skillv1.9.0

ClawScan security

pidrive · ClawHub's context-aware review of the artifact, metadata, and declared behavior.

Scanner verdict

BenignMar 15, 2026, 4:29 AM

Verdict: Benign
Confidence: medium
Model: gpt-5-mini
Summary: The skill's instructions, required operations, and installation steps are consistent with a WebDAV-backed S3 filesystem; nothing in the SKILL.md contradicts the stated purpose, though installation requires trusting a third‑party binary and a network service.
Guidance: This skill is internally consistent with a WebDAV-to-S3 filesystem, but before installing you should: (1) verify the publisher and inspect the Homebrew tap / GitHub releases and source code (or checksums) before trusting and running the binary; (2) be aware installation on Linux requires sudo to install davfs2; (3) the service will store an API key at ~/.pidrive/credentials — treat that file as sensitive and rotate/revoke it if the host is compromised; (4) avoid using public link shares for sensitive data (the SKILL.md explicitly warns this); and (5) consider running the client in a restricted environment (container or dedicated VM) if you cannot fully trust the third‑party binary or the pidrive.ressl.ai service.

Review Dimensions

Purpose & Capability: okThe skill claims to provide a WebDAV-mounted filesystem backed by S3 and its instructions cover registering, obtaining an API key, mounting, and using unix commands. No unrelated credentials or system access are requested in the metadata; the runtime behavior described (WebDAV over HTTPS to pidrive.ressl.ai, local cache, ~/.pidrive/credentials) matches the stated purpose.
Instruction Scope: noteSKILL.md instructs the user/agent to install the pidrive CLI, register with the pidrive service, and mount a remote drive. It documents storing an API key at ~/.pidrive/credentials and using standard unix commands on the mount. This requires network access and reading/writing to the stated local credential path and the mount point; the instructions do not tell the agent to read unrelated system files or exfiltrate data, but do rely on contacting an external service (pidrive.ressl.ai).
Install Mechanism: noteThere is no install spec in the registry, but SKILL.md recommends installing via a third‑party Homebrew tap or GitHub releases and (on Linux) installing davfs2 via apt (requires sudo). Homebrew/GitHub releases are common distribution channels but require trusting the third‑party maintainer; the extra davfs2 package is expected for WebDAV mounts but increases privilege needs during installation.
Credentials: noteRegistry metadata lists no required env vars, which aligns with SKILL.md (the service issues an API key at registration rather than demanding pre-provided env vars). The skill will store a sensitive API key at ~/.pidrive/credentials (0600) and use it for WebDAV auth — that is proportional to the stated function, but the skill does involve local credential storage and outbound authentication to a remote server.
Persistence & Privilege: okThe skill does not request always: true and does not declare any background daemons or changes to other skills. It requires ordinary mount-level persistence while mounted and stores credentials under its own config path; autonomous invocation (disable-model-invocation: false) is the platform default and not a special privilege here.