Moltcops Skill
PassAudited by ClawScan on May 1, 2026.
Overview
The artifacts show a local, user-run scanner with no network or persistence, but its PASS result should not be treated as proof a skill is safe.
This appears to be a coherent local scanner. Use it on the specific skill folder you want to inspect, and do not treat a clean result as a complete security guarantee.
Findings (2)
Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.
If pointed at a broad folder, the scanner may read more local source or markdown files than intended, although the artifacts show no upload or persistence.
The scanner recursively reads files under the user-provided path. This is expected for a local security scanner, but users should choose the scan target deliberately.
for root, dirs, fnames in os.walk(skill_path): ... with open(filepath, "r", encoding="utf-8", errors="ignore") as f:
Run it only against the specific skill folder you want to evaluate.
A user could place too much confidence in a PASS result and skip other review steps.
The documentation describes PASS as 'Safe to install,' while the included scanner is a regex-based detector over selected file extensions. A clean result reduces suspicion but cannot prove safety.
| **PASS** | 0 | No critical or high-risk threats detected. Safe to install. |
Treat PASS as a limited signal, not a guarantee; still review the skill's permissions, source, and behavior before installing.