Skillv2.0.0

ClawScan security

Kazakh Convert · ClawHub's context-aware review of the artifact, metadata, and declared behavior.

Scanner verdict

BenignApr 4, 2026, 6:00 PM

Verdict: Benign
Confidence: high
Model: gpt-5-mini
Summary: The skill's code and runtime instructions are coherent with its stated purpose (bidirectional Kazakh Cyrillic↔Arabic conversion); it performs only local text/file operations and manages a local user dictionary, with no network calls or credential requests.
Guidance: This skill appears internally consistent and limited to local text/file operations. Before installing: (1) inspect the included kazConvert.py file (already provided) and verify you are comfortable with it writing/reading the user.dic and any input/output paths you provide; (2) be aware the skill will auto-run when the listed trigger phrases appear—remove or edit triggers if you want to avoid accidental invocation; (3) run it in a restricted environment if you want to test behavior (it requires only python3); (4) note the minor documentation path mismatch (SKILL.md vs script default for user.dic) — supply --dict explicitly to control where the wordlist is stored. No network or credential access was found.

Review Dimensions

Purpose & Capability: okName/description match the code and SKILL.md: the Python script implements conversion routines, dictionary management, file I/O and CLI subcommands described in SKILL.md. One small mismatch: SKILL.md examples reference 'skills/kazakh-convert/user.dic' while the script's default dictionary path is 'user.dic' (but the CLI accepts a --dict parameter), which is likely a documentation vs. run-path discrepancy rather than malicious.
Instruction Scope: okSKILL.md instructs the agent to read input files, write output files, and read/write a local user.dic — all expected for a conversion/wordlist tool. It does not instruct reading unrelated system config, environment variables, or transmitting data externally. The automatic trigger keywords are declared in SKILL.md; automatic invocation could cause the skill to run when those phrases appear, which is expected behavior but worth being aware of.
Install Mechanism: okThere is no install spec (instruction-only + included Python file). No downloads, no package installs, and the only runtime requirement is python3 per _meta.json. This minimizes install-time risk.
Credentials: okThe skill declares no required environment variables, credentials, or config paths. The code only accesses local files (user dictionary and any user-specified input/output files). There are no network endpoints or secret reads.
Persistence & Privilege: okalways is false and the skill does not request elevated system presence. It can be invoked automatically by trigger phrases (documented) and can be invoked by the agent autonomously (platform default). The skill does not modify other skills or global agent settings.