Back to skill
Skillv1.0.0
ClawScan security
Transparency Log Auditor · ClawHub's context-aware review of the artifact, metadata, and declared behavior.
Scanner verdict
BenignFeb 22, 2026, 9:56 AM
- Verdict
- benign
- Confidence
- high
- Model
- gpt-5-mini
- Summary
- The skill is an instruction-only auditor that only requires curl and python3 to query and analyze transparency-log endpoints; its requested resources and instructions are consistent with its stated purpose.
- Guidance
- This skill is coherent and appears to do what it says: query transparency-log endpoints and analyze signing history. Before installing, confirm you trust the skill's publisher (source/homepage is missing here), and be aware that the auditor will perform network queries against registries/log endpoints when run. If you plan to let the agent run it autonomously, consider restricting it from submitting any credentials or private registry endpoints without explicit approval. If you need stronger assurance, request the skill's source or an implementation to review the exact verification logic (e.g., how it validates append-only properties and handles malformed logs) before using it to make security decisions.
Review Dimensions
- Purpose & Capability
- okThe name/description (auditing transparency logs for skill signing events) matches the declared requirements: network tooling (curl) and a scripting runtime (python3) are reasonable for fetching endpoints and verifying chains. There are no unexpected credentials, binaries, or config paths requested that would be unrelated to auditing logs.
- Instruction Scope
- okSKILL.md contains guidance about what to check (log existence, append-only verifiability, coverage, cross-log consistency, independent verification). The provided examples and usage describe network queries and local verification logic; there are no instructions in the provided content to read unrelated local files, environment secrets, or to exfiltrate data to third-party endpoints. The skill is instruction-only and doesn't instruct accessing system state outside of contacting registries and logs.
- Install Mechanism
- okNo install spec and no code files are present. Being instruction-only minimizes installation risk — nothing is downloaded or written to disk by the skill itself.
- Credentials
- okThe skill requires no environment variables or credentials. That is proportionate to a read-only auditor which queries public registry/log endpoints. There are no requests for unrelated secrets or broad access rights.
- Persistence & Privilege
- okalways is false and the skill is user-invocable; it does not request permanent presence or elevated agent-wide configuration changes. The skill can be invoked autonomously by the agent (default platform behavior), but that is not combined with any other high-risk flags.