Skillv0.1.0

ClawScan security

IPFS Server · ClawHub's context-aware review of the artifact, metadata, and declared behavior.

Scanner verdict

BenignFeb 16, 2026, 5:28 AM

Verdict: benign
Confidence: high
Model: gpt-5-mini
Summary: The skill's requirements and instructions match its stated purpose (running and operating an IPFS node); it is an instruction-only guide with no hidden env/credential requests or code to execute.
Guidance: This skill is coherent for managing an IPFS node, but follow these cautions before running commands: 1) Verify any IPFS binary you install (prefer official package manager or verify signatures from dist.ipfs.tech). 2) Keep the API address bound to localhost (don’t expose /api publicly). 3) Exposing the gateway on 0.0.0.0 or publishing a gateway publicly can make content and your node reachable — ensure you want that and that firewalls/auth are configured. 4) The swarm.key created for private networks is a sensitive secret—anyone with it can join the private network; protect it and don’t share accidentally. 5) Remote pinning requires provider credentials (JWT) which you would supply separately; the skill does not request or store them. 6) Review peer/bootstrap changes and avoid adding untrusted bootstrap peers. Overall: the skill appears to be what it claims, but the commands it teaches have real network/security implications — run them deliberately and verify binaries and network exposure before applying settings.

Review Dimensions

Purpose & Capability: okName/description (IPFS node operations) align with what the SKILL.md asks you to do: install/configure the ipfs binary, run the daemon, manage pins, IPNS, peers, gateways, and private networks. Required binary (ipfs) is appropriate and nothing unrelated is requested.
Instruction Scope: noteSKILL.md contains direct shell commands for installing, configuring, and operating an IPFS node only. A few operations can increase exposure if misused (e.g., configuring gateway on 0.0.0.0, removing bootstrap nodes, creating and distributing a swarm.key). The skill warns about some of these, but these instructions are powerful and could make the node publicly reachable if followed without caution.
Install Mechanism: okThis is an instruction-only skill (no install spec, no code files). Installation guidance points to Homebrew or dist.ipfs.tech — both are expected legitimate sources for Kubo/IPFS binaries. No arbitrary/personal download URLs or extract/install of unknown artifacts are present.
Credentials: okThe skill does not request environment variables, credentials, or access to unrelated config paths. It shows how to configure remote pinning (which requires a service JWT) but does not request or hardcode any secrets in the skill files.
Persistence & Privilege: okalways is false and the skill is user-invocable. There is no install that persists code or modifies other skills or system-wide settings. Agent autonomous invocation is allowed by default but is not combined with other concerning privileges here.