Back to skill
Skillv0.1.0
ClawScan security
It Searching · ClawHub's context-aware review of the artifact, metadata, and declared behavior.
Scanner verdict
BenignFeb 16, 2026, 5:57 AM
- Verdict
- benign
- Confidence
- high
- Model
- gpt-5-mini
- Summary
- An instruction-only skill that scrapes public AI blogs and arXiv pages; its requests and instructions are consistent with its stated purpose and it does not ask for credentials or install anything.
- Guidance
- This skill is instruction-only and appears coherent with its purpose. Before installing, confirm that your agent environment provides the 'url_scraping' and 'arxiv_search' tools the skill expects. Be aware the skill will fetch content from external websites (public blogs and arXiv); ensure that scraping those sites is acceptable for your use-case and that the scraping tool respects robots.txt and rate limits. Because no credentials are requested, there is low direct credential-exfiltration risk, but scraped pages can contain misleading or malicious content—validate important facts against original sources. If you need more control, request the publisher declare required tools or add explicit limits (e.g., domains, rate limits, robots.txt compliance) in the SKILL.md.
Review Dimensions
- Purpose & Capability
- noteThe skill's name/description (fetch tech news and arXiv papers) matches the instructions which use url_scraping and arxiv_search tools to read public blogs and arXiv pages. Minor operational mismatch: the SKILL.md assumes availability of 'url_scraping' and 'arxiv_search' tools but the registry metadata does not declare required tools or integrations — this is an implementation/packaging omission, not a security discrepancy.
- Instruction Scope
- noteInstructions are narrowly scoped to scraping listed company blogs and arXiv pages and to using arxiv_search only for targeted queries. The content does not instruct reading local files, environment variables, or unrelated system state. It does not mention respecting robots.txt, rate limits, or site policies (operational guidance missing).
- Install Mechanism
- okNo install spec and no code files — instruction-only skill, so nothing is written to disk and there are no third-party packages pulled in.
- Credentials
- okThe skill requests no environment variables, credentials, or config paths. That is proportionate for a web-scraping/search skill.
- Persistence & Privilege
- okalways:false and standard autonomous invocation settings. The skill does not request persistent system-wide privileges or modify other skills' configs.