Capability Scope Expansion Watcher
PassAudited by ClawScan on May 1, 2026.
Overview
The provided artifacts describe a coherent instruction-only audit helper with no credentials, persistence, or mutation authority; its declared curl/python3 use and optional installed-skill-list input are worth noticing but are purpose-aligned.
This appears safe to use for auditing skill-version drift. Before installing, note that it may use curl/python3 for analysis and that providing a full installed skill list can reveal your agent’s configuration; share only the inputs needed for the report.
Findings (3)
Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.
The agent may use command-line tooling to gather or process version information if the user asks for an audit.
The skill declares curl and python3 as required binaries. These are local command/network-capable tools, but their use is disclosed and fits the stated purpose of retrieving and analyzing skill version history.
requires:
bins: [curl, python3]Approve command or network use only for skill identifiers, version ranges, or artifact sources you intend to analyze.
Sharing a full installed skill list may expose which tools and capabilities are present in the user’s agent environment.
The skill may consume an installed skill list as analysis input. That is purpose-aligned, but installed-skill data can reveal the agent’s configuration and should be treated as contextual information shared for the task.
- An agent's installed skill list to identify which skills have drifted furthest from their initial capability declarations
Provide only the skill identifiers or lists needed for the audit, and redact unrelated private metadata when possible.
Users have less external context for who maintains the skill or where its instructions originated.
The registry metadata does not provide an external source or homepage for independent provenance review. This is mitigated by the artifact being instruction-only with no install spec or code files.
Source: unknown Homepage: none
Review the visible instructions before use and prefer trusted publishers or source-linked packages for higher-impact skills.