Skillv1.0.2

ClawScan security

NCCU OJ · ClawHub's context-aware review of the artifact, metadata, and declared behavior.

Scanner verdict

BenignMar 10, 2026, 4:04 AM

Verdict: benign
Confidence: high
Model: gpt-5-mini
Summary: The skill's code and instructions match its stated purpose (fetch problems, write solutions, submit and check results on NCCUOJ); it requires user credentials only when needed and stores session cookies locally, with no unrelated permissions or external installs.
Guidance: This skill appears to be what it claims — it fetches problems and can submit/check solutions for NCCUOJ. Before installing or running it, consider: - Password exposure: the examples use CLI arguments for username/password, which can be visible to other users/processes on the same machine; prefer typing credentials interactively or using a guarded mechanism if available. - Cookie storage: session cookies are saved to .nccuoj/cookies.txt in the workspace; remove this file when you no longer want the session kept. - Base URL override: an environment variable (NCCUOJ_BASE_URL) can redirect API calls — ensure it is not set to an untrusted host in your environment. - Run in a trusted environment: because the scripts perform network operations and write files, run them in your expected workspace and review the scripts if you have concerns. If you need stronger protections, consider creating a throwaway account for submissions and manually reviewing or sandboxing the scripts before use.

Review Dimensions

Purpose & Capability: okName/description match the included Python scripts (get_problem, submit, check_result, session). All network calls target the NCCUOJ API and the stored files (.nccuoj/* and solution files) align with the described functionality.
Instruction Scope: noteSKILL.md instructs the agent to request usernames/passwords when needed and to run the included scripts. The scripts read/write only the .nccuoj workspace directory and call the NCCUOJ API. Note: the workflow instructs passing passwords as CLI arguments (exposed to the process list) and the scripts persist cookies to .nccuoj/cookies.txt; these are privacy/security considerations but are expected for a CLI-based OJ helper.
Install Mechanism: okThere is no install step or remote download. This is an instruction+script bundle using only Python stdlib. No external package installs or unknown URLs are used.
Credentials: noteThe skill declares no required env vars. The code supports an override NCCUOJ_BASE_URL environment variable (useful for testing); this is reasonable but means a user or environment could redirect requests to a different server if set. Credentials are supplied at runtime (CLI args) rather than via a declared primary credential — this matches the described behavior but has the usual CLI-password exposure risk. The scripts persist session cookies locally (.nccuoj/cookies.txt), which is expected but worth noting.
Persistence & Privilege: okalways:false and the skill does not request system-wide changes or modify other skills. It creates/uses only its own .nccuoj directory for cookies and solution files (normal and scoped).