Skillv0.1.2

ClawScan security

Obsidian Clip · ClawHub's context-aware review of the artifact, metadata, and declared behavior.

BenignMar 4, 2026, 7:49 AM

Verdict: benign
Confidence: high
Model: gpt-5-mini
Summary: This skill is internally consistent: it fetches or summarizes a web page and saves a local Obsidian note using a simple bundled shell script, and it only needs optional, local configuration.
Guidance: This skill appears safe and does what it says: it summarizes URLs and writes a note to a local Obsidian vault using the included script. Before enabling or using it, check these practical points: (1) confirm the vault path (OBSIDIAN_VAULT) so notes are saved where you expect; (2) be aware that the agent may fetch pages or open a browser to access content — do not use it to fetch pages that require you to expose credentials to an untrusted/hosted agent; (3) review the bundled script if you have strict filesystem or filename policies (it does basic sanitization but will create files under the vault); (4) if you run the agent on a remote server, ensure you are comfortable with the vault location and any web requests performed. If those are acceptable, the skill's design and permissions are proportionate to its purpose.

Purpose & Capability: okThe name/description (create/save Obsidian clips) matches the actual behavior: SKILL.md describes fetching & summarizing pages and the repo includes a script that writes markdown files into an Obsidian vault. There are no unexpected credentials, cloud APIs, or unrelated binaries requested.
Instruction Scope: noteRuntime instructions tell the agent to fetch pages (prefer lightweight extraction; use a real browser when needed) and to ask the user to log in if blocked by paywalls. This is coherent for a clipping tool, but it means the agent may perform web requests and use browser capabilities or ask the user to provide access to gated content — expected but worth noting for privacy.
Install Mechanism: okNo install spec; the skill is instruction-only with a single included Bash script. Nothing is downloaded or written to system locations beyond the user's Obsidian vault path.
Credentials: okNo required environment variables or secrets. Two optional environment variables (OBSIDIAN_VAULT and OBSIDIAN_CLIP_LANG) are reasonable and documented. The script also respects LANG/LC_ALL for language detection — appropriate for multilingual output.
Persistence & Privilege: okalways:false and the skill only writes to the user-configurable Obsidian vault (defaults to a path under $HOME). It does not modify other skills or system-wide agent settings.