Skillv1.0.0

ClawScan security

changelog-generator · ClawHub's context-aware review of the artifact, metadata, and declared behavior.

BenignMar 11, 2026, 3:17 PM

Verdict: benign
Confidence: high
Model: gpt-5-mini
Summary: The skill's code and instructions match its stated purpose (parsing Conventional Commits, linting, and generating changelog entries); it only uses git and local file I/O and requests no credentials or external installs.
Guidance: This skill appears coherent and self-contained: it only parses commit messages, runs git locally, and reads/writes changelog files. Before using in CI or automation: (1) review the scripts to confirm the commit regex and scope rules match your repository conventions, (2) vet or pin the code if you plan to run it in production CI to avoid unexpected changes, (3) when using --write ensure you have backups or run in a branch/PR first (the script prepends to the target file), and (4) run the tools in a repository checkout you control — the scripts do not exfiltrate data or call network endpoints, but they do read your git history and write files locally.

Purpose & Capability: okName/description (changelog generation from Conventional Commits) aligns with required files and behavior. The included Python scripts implement commit parsing, semver bump detection, rendering to markdown/JSON, optional file prepend, and a linter — all expected for this purpose.
Instruction Scope: okSKILL.md instructs the agent to run the included scripts, supply commit input via stdin/file/git ranges, and optionally write to CHANGELOG.md. The instructions reference only git, local files, and the supplied scripts; they do not request unrelated system data, secrets, or external endpoints.
Install Mechanism: okNo install spec; this is instruction- and script-based and relies only on Python and git being available. Nothing is downloaded or extracted from external URLs.
Credentials: okThe skill declares no environment variables, credentials, or config paths. The scripts only use stdin/stdout, local files, and run git via subprocess; there are no requests for unrelated secrets or external service tokens.
Persistence & Privilege: okThe skill is not always-enabled and does not request persistent system-wide privileges. It can modify a changelog file only when invoked with the --write flag and operates on the path provided by the caller.