Skillv1.0.0

ClawScan security

Journal Matchmaker · ClawHub's context-aware review of the artifact, metadata, and declared behavior.

BenignFeb 28, 2026, 6:42 AM

Verdict: benign
Confidence: high
Model: gpt-5-mini
Summary: The skill's code, instructions, and data are consistent with its stated purpose (journal recommendations from an abstract); it requires no external credentials, no network access, and the runtime behavior appears proportional to the task.
Guidance: This skill appears coherent and limited to local processing of abstracts using the provided journal database. Before installing or running it: (1) Review the bundled references/journals.json if you rely on accurate impact factors (they can be stale); (2) Avoid passing sensitive or unpublished full manuscripts to any third-party runtime; run the script in an isolated/sandboxed workspace if you want extra safety; (3) If you allow passing filenames as --abstract, ensure the script treats them safely (SKILL.md mentions input validation — confirm the implementation prevents ../ path traversal when using file inputs); (4) Treat its recommendations as advisory (not authoritative) and double-check journal scope/IF via official sources before submission.

Purpose & Capability: okName and description match the included files: SKILL.md documents running scripts/main.py and the repository contains a local journal database and field definitions used for matching. There are no unexpected credentials, binaries, or third-party services required.
Instruction Scope: okSKILL.md instructs the agent/user to run the bundled Python script with an abstract and optional filters. The instructions and the code (shown imports and local JSON references) operate on local files (references/*.json) and do keyword/TF-IDF matching; I saw no instructions to read unrelated system files, environment variables, or to send data to external endpoints.
Install Mechanism: okNo install spec is provided (instruction-only with a bundled script). Dependencies are minimal (requirements.txt contains only 'dataclasses'). Nothing is downloaded or extracted at install time, so there is no high-risk install mechanism.
Credentials: okThe skill declares no required environment variables, credentials, or config paths. The code imports only standard libraries and reads local JSON reference files; there are no requests for unrelated secrets or access to external accounts.
Persistence & Privilege: okalways is false (skill is not force-included). The skill does not request persistent system privileges or modify other skills' configuration. Its filesystem access is limited to reading/writing workspace files (per SKILL.md) and local references.