Skillv1.1.5

ClawScan security

爱图表3D图表 · ClawHub's context-aware review of the artifact, metadata, and declared behavior.

BenignApr 23, 2026, 8:54 AM

Verdict: benign
Confidence: high
Model: gpt-5-mini
Summary: The skill's requests and instructions are coherent with its stated purpose: it calls a remote aitubiao API to produce 3D chart illustrations, asks the user for a single API key, and uses a bundled bash CLI to perform network operations and read local data files.
Guidance: This skill appears to do what it says: it will ask you to provide an aitubiao API key and will store it at ~/.aitubiao/credentials (file permission 600). It requires curl and jq to be available. Before installing/use: 1) Only provide an API key you trust to be used with api.aitubiao.com. 2) Review the bundled script if you want to confirm exact endpoints it calls (they are under /api/v1/agent/...). 3) Be aware the skill can read user-supplied local files (CSV/XLSX) as part of normal operation — don't allow it to read sensitive system files. 4) Note the SKILL.md enforces that generation must go through the remote API and forbids local rendering; if you need local rendering fallback, this skill will not provide it. 5) Minor inconsistency: the CLI echoes a different CHANNEL string in one message (non-functional). Overall, the behavior is internally consistent with the description.

Purpose & Capability: okName/description match the observed behavior: the included CLI talks to https://api.aitubiao.com to create charts. Required tools (bash, curl, jq) and the need for an API key are proportionate to a remote-rendering service.
Instruction Scope: okSKILL.md confines runtime actions to reading user-provided data (stdin, CSV/TXT via Read, or Excel via xlsx/Read) and calling the aitubiao API. It explicitly forbids local generation of 3D output, and the CLI implements auth, quota check, and create endpoints as documented. No instructions to read unrelated system secrets are present.
Install Mechanism: okNo install spec; this is instruction-only with a bundled shell script. The script is self-contained and does not download or execute code from arbitrary URLs.
Credentials: okOnly credential storage is required (an API key saved to ~/.aitubiao/credentials). No unrelated environment variables or external service credentials are requested.
Persistence & Privilege: noteThe skill persists the API key to ~/.aitubiao/credentials (chmod 600). always:false and no system-wide modifications are requested, but the credential file is persistent across sessions — be aware this stores a long-lived secret on disk.