Back to skill
Skillv1.0.0
ClawScan security
qa tester · ClawHub's context-aware review of the artifact, metadata, and declared behavior.
Scanner verdict
BenignMay 1, 2026, 8:26 AM
- Verdict
- Benign
- Confidence
- high
- Model
- gpt-5.5
- Summary
- This instruction-only QA skill is coherent, purpose-aligned, and explicitly limits test execution to user-approved commands.
- Guidance
- This appears safe to install as a QA guidance skill. As with any testing assistant, review proposed test file changes and only approve test commands you are comfortable running in your repository.
Review Dimensions
- Purpose & Capability
- okThe artifacts consistently describe QA/test strategy, test implementation, bug reproduction, and release-readiness guidance.
- Instruction Scope
- okThe skill gives scoped testing rules and explicitly says not to execute tests unless the user asks or approves agreed commands.
- Install Mechanism
- okNo install spec, code files, binaries, environment variables, or credentials are declared; this is an instruction-only skill.
- Credentials
- okRepository file changes for adding tests are consistent with the stated QA purpose, and command execution is framed as user-approved.
- Persistence & Privilege
- okNo persistence, background behavior, credential use, privileged access, or external data flow is shown in the artifacts.