Back to skill
Skillv0.1.2
ClawScan security
ACP Background Runs · ClawHub's context-aware review of the artifact, metadata, and declared behavior.
Scanner verdict
BenignMar 10, 2026, 12:17 PM
- Verdict
- benign
- Confidence
- high
- Model
- gpt-5-mini
- Summary
- The instructions are coherent with the stated goal of routing coding-agent work into non-blocking ACP background runs and do not request extra credentials or installs.
- Guidance
- This skill is internally consistent and doesn't ask for extra credentials or installs. Before enabling it, verify that: (1) your ACP/sessions_spawn infrastructure and agentIds (Codex, Claude, Gemini, etc.) are correctly configured and trusted; (2) background runs will only have access to repositories and filesystem paths you intend them to touch (the SKILL.md encourages setting cwd and resolving absolute paths); and (3) completion/notification mechanisms are enabled so results are returned to the conversation. If you have sensitive data in code/workspaces, test the skill on a non-sensitive repository or restrict agent filesystem permissions first.
Review Dimensions
- Purpose & Capability
- okThe skill's name and description match the instructions: it only describes how to spawn background ACP/subagent runs and sets parameters like runtime, agentId, mode, cwd, and timeouts. No unrelated binaries, secrets, or installs are requested.
- Instruction Scope
- noteInstructions stay on-topic (how to spawn background sessions, when to use run vs session/thread, timeouts, fallbacks). They do instruct the agent to set cwd and to resolve absolute paths from context, which is expected for code-work but means spawned background runs may access repository or filesystem paths — you should ensure filesystem access is limited to intended projects.
- Install Mechanism
- okInstruction-only skill with no install spec and no code files; nothing is written to disk or downloaded by the skill itself.
- Credentials
- okThe skill declares no environment variables, credentials, or config paths. It does not ask for unrelated secrets; the runtime parameters (agentId, runtime) are proportional to the stated purpose.
- Persistence & Privilege
- okalways is false and the skill allows normal autonomous invocation. It does not request permanent presence or modify other skills. Be aware that autonomous background runs will execute with whatever agent/session privileges are configured in your environment.