Skillv1.13.0

ClawScan security

Miniprogram Development · ClawHub's context-aware review of the artifact, metadata, and declared behavior.

Scanner verdict

SuspiciousApr 15, 2026, 4:26 AM

Verdict: suspicious
Confidence: medium
Model: gpt-5-mini
Summary: The skill's documentation and runtime instructions largely match a WeChat Mini Program developer helper, but the instructions assume Node/npm tooling and recommend running npx-installed tooling and fetching raw files from an external host while the skill metadata declares no required binaries or install steps — an inconsistency worth caution.
Guidance: This skill appears coherent for WeChat Mini Program + CloudBase guidance, but be aware of two practical mismatches before installing/using it: (1) the SKILL.md repeatedly assumes Node/npm (npx) and running npx-installed packages, yet the manifest lists no required binaries — confirm your environment has node/npx and review any packages you run with npx; (2) the docs reference raw URLs on cnb.cool and instruct updating local mcporter config (config/mcporter.json) to call remote tooling, which could cause remote code to be executed via npx. Before use: ensure you review any npx command output, verify the trustworthiness of referenced packages/URLs, do not paste secrets into configs, and back up any tooling config files you modify. If you need higher assurance, ask the skill author for a minimal list of required binaries and a deterministic install plan (specific package versions or vetted release URLs).

Review Dimensions

Purpose & Capability: concernThe skill claims to be an instruction-only WeChat Mini Program helper and requests no binaries or environment variables, but its instructions repeatedly assume a Node/npm environment (npx, @cloudbase/cloudbase-mcp) and reference adding mcporter configuration. Requiring npx/node/npm is reasonable for these workflows, but the declared requirements do not list them, which is an incoherence.
Instruction Scope: noteThe SKILL.md focuses on expected project files (project.config.json, app.js, miniprogram/ layout) and CloudBase integration guidance — these are appropriate. It also instructs the agent to run npx mcporter calls and to modify local mcporter config (config/mcporter.json) and to follow device-code auth flows. Those steps are within the skill's domain but grant the agent the ability to execute fetched npm packages and to write to a local tooling config; users should be aware of that level of access.
Install Mechanism: noteNo install spec is present (lowest baseline risk). However, the docs reference running 'npx' to fetch @cloudbase/cloudbase-mcp@latest and point to raw content hosted at cnb.cool as fallback sources. While not an explicit install action in the manifest, the guidance implies downloading and executing remote packages and reading/writing local config, which raises moderate risk if executed without review.
Credentials: okThe skill does not request any environment variables, credentials, or privileged config paths. The instructions explicitly advise against hard-coding SecretId/SecretKey and promote device-code auth, which is appropriate and proportionate.
Persistence & Privilege: okalways is false and the skill is instruction-only; it does not request persistent installation or elevated platform privileges. The instructions do recommend editing a local mcporter config file (config/mcporter.json) to add a 'cloudbase' entry, which is a local change but limited in scope to tooling configuration.