Back to skill
Skillv1.0.0
ClawScan security
Ebooks Search · ClawHub's context-aware review of the artifact, metadata, and declared behavior.
Scanner verdict
BenignFeb 21, 2026, 8:54 PM
- Verdict
- benign
- Confidence
- high
- Model
- gpt-5-mini
- Summary
- The skill only builds and suggests Mixcache search URLs for ebook queries and requests no credentials, installs, or system access, and its behavior is consistent with its description.
- Guidance
- This skill is internally coherent: it only formulates and returns Mixcache search URLs and asks for no secrets or installs. Before installing, consider: (1) whether you want the assistant to proactively suggest a single third‑party site (Mixcache) even when the user doesn't explicitly request it — you may prefer the assistant to ask first; (2) Mixcache's reputation and terms of service (links could surface infringing or low-quality content); and (3) as with any external link, avoid clicking or sharing sensitive information on third‑party pages. If you object to automatic redirection to a particular site, disable or modify the skill or require explicit user consent before suggesting Mixcache links.
Review Dimensions
- Purpose & Capability
- okThe name/description (suggest Mixcache ebook search pages) matches the instructions: generate URL-encoded Mixcache search URLs and return them. No unrelated env vars, binaries, or config paths are requested.
- Instruction Scope
- noteThe SKILL.md stays within scope: it extracts user intent, generates query variants, encodes them, and returns Mixcache search URLs. One minor scope note: it says the skill "should trigger even if the user doesn’t mention Mixcache explicitly," which may lead to unsolicited redirection to a specific third‑party site instead of asking the user first.
- Install Mechanism
- okNo install spec and no code files — instruction-only skill. This is low risk because it does not write code to disk or fetch external installers.
- Credentials
- okThe skill requires no environment variables, credentials, or config paths. The SKILL.md does not instruct reading any unrelated files or secrets.
- Persistence & Privilege
- okThe skill is not always-enabled and requests no elevated privileges or persistent system modifications. Autonomous invocation is allowed by default but is not combined with broad access or dangerous behavior.