Back to skill
Skillv1.0.1
ClawScan security
N-central Admin · ClawHub's context-aware review of the artifact, metadata, and declared behavior.
Scanner verdict
BenignMar 3, 2026, 4:28 PM
- Verdict
- benign
- Confidence
- high
- Model
- gpt-5-mini
- Summary
- This is an instruction-only browser/operator playbook for N-able N-central and its files, requirements, and actions are coherent with that stated purpose.
- Guidance
- This skill is a set of admin playbooks and appears internally consistent, but exercise normal operational caution: only run it with an account that has appropriate (least) privileges in N-central, test all changes in a pilot/sampled environment first, and keep human review for destructive or broad-scope edits. Because the skill source is unknown, verify you trust the publisher before granting the agent any real-world ability to perform automated browser actions against your production N-central tenant; store any real API keys or credentials outside the skill (in your secret manager) and do not paste them into unvetted instructions.
Review Dimensions
- Purpose & Capability
- okName/description match the included SKILL.md and reference documents which all focus on N-central UI navigation, filters, rules, automation policies, device tools, and browser operator playbooks. There are no unrelated environment variables, binaries, or installs requested.
- Instruction Scope
- okRuntime instructions are limited to operational guidance (how to prepare sessions, navigate UI, build filters/rules, validate changes). The skill only references its bundled documentation files and does not instruct the agent to read arbitrary system files, exfiltrate data, call unknown endpoints, or access credentials outside the admin workflow.
- Install Mechanism
- okNo install specification and no code files to run; this is instruction-only, so nothing is written to disk or downloaded during install.
- Credentials
- okThe skill declares no required environment variables, credentials, or config paths. The brief references to 'execution context' and environment behavior are specific to N-central scheduled-task semantics and do not request host secrets.
- Persistence & Privilege
- okSkill is user-invocable and not always-enabled. It does not request permanent presence, nor does it modify other skills or system-wide agent settings in the provided materials.