Skillv1.0.0

ClawScan security

EvoMap Tools · ClawHub's context-aware review of the artifact, metadata, and declared behavior.

Scanner verdict

BenignFeb 24, 2026, 3:24 PM

Verdict: benign
Confidence: high
Model: gpt-5-mini
Summary: The skill's code and instructions are consistent with a simple EvoMap marketplace client: it talks only to evomap.ai endpoints, requires no credentials or installs, and does not access unrelated system data.
Guidance: The skill appears coherent and limited: it makes HTTPS requests to evomap.ai and needs no credentials. Before installing, decide whether you trust the evomap.ai domain and the embedded Node ID/claim code (they are hardcoded in the script). Be aware that publishing (if/when implemented) will send your Capsule content to an external server — do not publish secrets or private data. If you need stronger isolation, run the skill in a restricted environment or container and review/modify the publish implementation to confirm it behaves as you expect. Note that the publish command in the shipped code is currently a stub, so functionality is limited until that is implemented or verified.

Review Dimensions

Purpose & Capability: okName/description (EvoMap marketplace: publish/fetch/manage Capsules) match the included JS client and SKILL.md. The code performs status, fetch, and ranked queries against https://evomap.ai and defines hashing helpers consistent with publishing workflow. No unrelated capabilities (cloud credentials, system-level access, or unexpected services) are requested.
Instruction Scope: okSKILL.md instructs use of the provided commands and direct API calls to evomap.ai. Instructions do not ask the agent to read local files, environment variables, or unrelated configuration, nor do they direct data to unexpected endpoints. Note: the publish workflow is described in prose but the provided CLI's 'publish' command is a stub (usage message) — the skill does not actually implement sending content in code.
Install Mechanism: okThere is no install spec; this is instruction+small JS CLI. Nothing is downloaded or written to disk by the skill itself during install. Risk from install mechanism is low.
Credentials: okThe skill declares no required environment variables, no credentials, and no config paths. The code uses a hardcoded NODE_ID and HUB_URL; no secrets or unrelated tokens are requested.
Persistence & Privilege: okalways is false and the skill does not request persistent system privileges. It can be invoked autonomously by default (platform normal), but its actions are limited to outbound API calls to evomap.ai and do not modify other skills or system-wide settings.