Back to skill
Skillv1.0.0
ClawScan security
alipay-aipay-product-intro · ClawHub's context-aware review of the artifact, metadata, and declared behavior.
Scanner verdict
BenignApr 16, 2026, 12:45 PM
- Verdict
- benign
- Confidence
- high
- Model
- gpt-5-mini
- Summary
- The skill's requests, instructions, and required resources align with its stated purpose (fetch a paid Alipay product introduction and hand off the 402 payment response to a payment skill).
- Guidance
- This skill is internally consistent: it makes a single HTTP request to an Alipay endpoint and forwards a 402 response to another payment skill to complete payment. Before installing, confirm you trust the agent's network access and the downstream alipay-pay-for-402-service skill (that skill will handle payment and may require credentials). Also confirm the endpoint (aipayapi.alipay.com) is legitimate for your use case and ensure users explicitly consent before initiating any payment flow. Because this is instruction-only (no code), there were no static scan findings — you should still review the payment-handling skill and any credentials it requires before enabling payment operations.
Review Dimensions
- Purpose & Capability
- okName and description state this is an Alipay product-intro-and-payment handoff; the SKILL.md only asks the agent to GET a specific Alipay URL and forward a 402 Payment-Needed response to the alipay-pay-for-402-service skill, which is coherent with the described purpose.
- Instruction Scope
- okRuntime instructions are narrowly scoped: perform a single HTTP request to aipayapi.alipay.com, inspect the response code, and if 402 forward the full response to the specified payment skill. The instructions do not ask the agent to read unrelated files, environment variables, or other system state.
- Install Mechanism
- okNo install spec and no code files — instruction-only skill — so nothing is written to disk and no external packages or downloads are requested.
- Credentials
- okThe skill declares no environment variables, credentials, or config paths. That matches the simple network-request-and-handoff behavior described.
- Persistence & Privilege
- okalways is false and the skill does not request persistent privileges or modify other skills/config; autonomous invocation is allowed by platform default but this skill's actions remain limited and proportional.