Back to skill
Skillv1.7.0
ClawScan security
Owletto OpenClaw Setup · ClawHub's context-aware review of the artifact, metadata, and declared behavior.
Scanner verdict
BenignApr 21, 2026, 2:06 AM
- Verdict
- benign
- Confidence
- medium
- Model
- gpt-5-mini
- Summary
- Instruction-only setup for an Owletto memory plugin that is internally consistent with its stated purpose, but the skill lacks source/homepage and does not declare the CLI binaries it assumes are present.
- Guidance
- This skill is instruction-only and generally coherent, but exercise caution before following the commands: 1) Verify you trust the `owletto` and `openclaw` CLIs and obtain them from official sources (there is no homepage/repo linked here). 2) Review the OpenClaw plugin's source/release before installing (check what permissions it requests). 3) During owletto login, confirm the MCP URL is correct and that OAuth/device flow scopes are acceptable. 4) If you don't already have these CLIs installed, install them from the project sites rather than running unknown installers. If you need stronger assurance, ask the publisher for a repository or release link and a checksum for the CLI binaries.
Review Dimensions
- Purpose & Capability
- noteThe SKILL.md instructions match the described purpose (installing/configuring an Owletto OpenClaw plugin and performing OAuth/device login and health checks). However, the skill does not declare required binaries even though the instructions assume the `owletto` and `openclaw` CLIs are available; the package/source is also unknown (no homepage or repository), which reduces transparency.
- Instruction Scope
- okRuntime instructions are narrowly scoped to starting/configuring the local Owletto runtime, installing the OpenClaw plugin, performing CLI login/configure actions, and running a health check. The instructions do not request arbitrary file access, unrelated environment variables, or data exfiltration steps.
- Install Mechanism
- okThere is no install spec and no code files (instruction-only), so nothing is written to disk by the skill itself. This is a low-risk delivery method. The tradeoff is that the SKILL.md assumes external CLIs are installed by the user from other sources.
- Credentials
- okThe skill declares no environment variables or credentials. It instructs using the Owletto CLI to perform OAuth/device login, which is proportional to the task. The SKILL.md does not ask for unrelated credentials or secrets.
- Persistence & Privilege
- okalways is false and the skill is user-invocable; there is no indication it will persistently modify unrelated system or other-skill configuration. The primary actions are installing a plugin (via OpenClaw) and running CLI login/config commands, which is expected for this purpose.