Back to skill
Skillv0.1.3
ClawScan security
Boj Mcp · ClawHub's context-aware review of the artifact, metadata, and declared behavior.
Scanner verdict
BenignFeb 15, 2026, 5:14 PM
- Verdict
- benign
- Confidence
- high
- Model
- gpt-5-mini
- Summary
- The skill's declared purpose (access BOJ statistical flat files) matches its instructions and required artifacts; it installs/uses a dedicated boj-mcp binary and does not ask for unrelated credentials or elevated privileges.
- Guidance
- This skill appears coherent: it is a CLI client for publicly available BOJ flat files and does not request secrets. Before installing, verify the boj-mcp package source (PyPI or the uv registry), check package maintainers and release checksums, and consider installing in a sandbox or virtual environment if you have supply-chain concerns. If you need maximum assurance, review the package source code (or request a package provenance URL) prior to installation.
Review Dimensions
- Purpose & Capability
- okName/description, runtime commands in SKILL.md, and the required binary (boj-mcp) are consistent: the skill is a thin wrapper around a client that downloads BOJ flat files. No unrelated credentials, tools, or paths are requested.
- Instruction Scope
- okSKILL.md instructs only to run the boj-mcp CLI to list/search/download BOJ datasets and to test connectivity. It notes local caching and character encoding handling — both reasonable for this use case. The instructions do not ask the agent to read unrelated files, secrets, or to transmit data to third-party endpoints.
- Install Mechanism
- noteInstall spec uses a third-party package installer ('uv' package kind) that will create a binary named boj-mcp; SKILL.md also suggests 'pip install boj-mcp' as an alternative. Installing third-party packages executes external code, which is expected for a CLI client but carries normal supply-chain risk. Verify package provenance (registry, checksums) before installing.
- Credentials
- okNo environment variables, credentials, or config paths are required. The skill does local caching but does not request secrets or access to unrelated services — this is proportionate to its stated purpose.
- Persistence & Privilege
- okalways is false and the skill does not request any elevated or persistent platform-wide privileges. Local caching is normal for a data client and the skill does not attempt to modify other skills or system-wide agent configs.