Skillv1.0.1

ClawScan security

Stegstr · ClawHub's context-aware review of the artifact, metadata, and declared behavior.

Scanner verdict

BenignFeb 11, 2026, 9:11 AM

Verdict: benign
Confidence: high
Model: gpt-5-mini
Summary: The skill's requirements and instructions match its stated purpose (build a CLI from the Stegstr GitHub repo and use it to embed/decode steganographic payloads); nothing requested is disproportionate or unexplained.
Guidance: This skill is internally consistent with its stated purpose, but follow these precautions before installing or running it: 1) Verify the GitHub repo (https://github.com/brunkstr/Stegstr) and the project source before building; 2) Don't set STEGSTR_REPO_URL to an untrusted location—only override the repo if you trust the target; 3) Be careful with private keys: do not paste secret keys into command lines or public shells unless you understand the risk; prefer using ephemeral/sandboxed environments when building and testing unknown binaries; 4) If you need to run this in a high-security environment, review the source code (or run the build in an isolated container) before executing the produced binary.

Review Dimensions

Purpose & Capability: okName/description (PNG steganography for Nostr) align with the SKILL.md and included files: instructions show cloning the Stegstr GitHub repo and building a CLI that performs decode/detect/embed/post. There are no unrelated environment variables, credentials, or binaries requested.
Instruction Scope: okRuntime instructions are narrowly scoped to cloning, building, and running the stegstr-cli tool and describe only image payload operations. The SKILL.md does reference external docs and links (stegstr.com, GitHub), but it does not instruct the agent to exfiltrate arbitrary system data. Note: the CLI offers an option to supply a private key (--privkey-hex); handling private keys is sensitive and is a user decision (not automatically required by the skill).
Install Mechanism: okNo platform install spec; instructions and the included install.sh perform a git clone from GitHub (github.com/brunkstr/Stegstr) and a local cargo build. Using GitHub and building from source is expected for this kind of CLI. Building and executing a compiled binary is normal but carries the usual risk of running software built from source—recommended to review/trust the repo before building.
Credentials: okThe skill declares no required environment variables or credentials. The included install.sh allows optional override of the repo URL via STEGSTR_REPO_URL (a convenience for advanced users) — this could be abused if a user intentionally points it at an untrusted repo, but it is not required. The CLI supports passing a private key on the command line (sensitive) — the skill does not demand secrets itself.
Persistence & Privilege: okThe skill is not always-enabled, does not request elevated system-wide privileges, and only needs normal filesystem access to clone/build/install to user-local directories (default ~/.local). install.sh creates user-local files and a symlink in ~/.local/bin; this is expected and proportionate.