Back to skill
Skillv1.3.0
ClawScan security
Todokan Review Loop · ClawHub's context-aware review of the artifact, metadata, and declared behavior.
Scanner verdict
BenignFeb 25, 2026, 4:40 PM
- Verdict
- benign
- Confidence
- high
- Model
- gpt-5-mini
- Summary
- The skill's requested credentials and runtime instructions line up with its stated purpose (autonomous review-loop for Todokan tasks); nothing in the package asks for unrelated secrets, installs, or system access.
- Guidance
- This skill appears coherent with its stated purpose. Before installing: (1) ensure the TODOKAN_API_KEY you provide has the minimum necessary scopes (comments/tasks write only for intended boards if possible), (2) test using a beta slug or in a sandbox environment as README suggests, and (3) confirm the TODOKAN_MCP_URL points to your intended MCP endpoint. The instructions allow checking related boards/habitats — if you need to restrict lateral access, enforce that via API key permissions or server-side scoping. If you want further assurance, request the publisher's source or audit logs of actions the bot will take during a test run.
Review Dimensions
- Purpose & Capability
- okName/description (Todokan review-loop) match the declared env requirements (TODOKAN_API_KEY, TODOKAN_MCP_URL) and the runtime instructions (list boards, read tasks/comments, post comments, move status). The requested items are expected for a Kanban/MCP automation skill.
- Instruction Scope
- noteSKILL.md instructs the agent to read full task/comment threads, check related tasks across boards/habitats, spawn an internal research subagent when needed, post comments, and move tasks to done. These actions are within the stated purpose, but the instructions give broad discretion to inspect related boards/habitats — verify that the API key and server config limit scope to intended boards if you need tighter separation of data.
- Install Mechanism
- okThis is an instruction-only skill with no install spec or code files, so nothing will be downloaded or written by an installer. That is the lowest-risk install model.
- Credentials
- okOnly two environment values are required (TODOKAN_API_KEY, TODOKAN_MCP_URL), both directly related to the Todokan MCP integration. No unrelated credentials or system config paths are requested.
- Persistence & Privilege
- okalways is false (default) and the skill is not force-included. It will be able to be invoked autonomously (platform default), which is appropriate for an automation skill that polls MCP; nothing in the package attempts to modify other skills or system-wide settings.