Back to skill
Skillv1.5.0
ClawScan security
OPC Essentials · ClawHub's context-aware review of the artifact, metadata, and declared behavior.
Scanner verdict
BenignMar 3, 2026, 10:44 PM
- Verdict
- benign
- Confidence
- high
- Model
- gpt-5-mini
- Summary
- The skill is an instruction-only assistant for solo founders that asks for user-provided business context and returns drafts/priorities; its requirements and instructions are coherent with its stated purpose and it does not request credentials or install code.
- Guidance
- This skill is instruction-only and coherent with its stated purpose, but it will need you to paste or provide your business context (emails, invoices, leads). Do not share account credentials, mailbox passwords, API keys, or other sensitive secrets when using it. Review any drafts it produces before sending to clients. If you plan to connect this agent to external services (email, accounting, CRM), keep those integrations separate and only grant narrow, explicit access — the skill itself does not request or require such integrations.
Review Dimensions
- Purpose & Capability
- okThe name/description (solo-founder operating system: triage, proposals, follow-ups, cash collection, etc.) matches the SKILL.md modes and outputs. There are no unexpected declared binaries, credentials, or config paths that would be disproportionate to that purpose.
- Instruction Scope
- noteThe SKILL.md is instruction-only and directs the agent to transform user-supplied notes, leads, invoices, and conversation context into drafts and action items. It does not instruct the agent to read system files, access environment variables, or contact external endpoints. The skill does grant the agent discretion to 'infer the best mode from context' — this is reasonable for usability but means the agent may ask for (or use) arbitrary user-provided business data, so users should avoid pasting credentials or private account tokens into prompts.
- Install Mechanism
- okNo install spec and no code files — lowest-risk deployment model. Nothing will be downloaded or written to disk by the skill itself.
- Credentials
- okThe skill declares no required environment variables, credentials, or config paths. Its function legitimately depends on user-supplied business context (notes, invoices, leads) rather than secrets or platform credentials.
- Persistence & Privilege
- okalways is false and the skill is user-invocable; disable-model-invocation is false (normal). The skill does not request persistent privileges or modify other skills or system-wide settings.