Skillv1.2.0

ClawScan security

Siberian Permafrost Fossil Dig — Ancient Remains | AI Experience · ClawHub's context-aware review of the artifact, metadata, and declared behavior.

Scanner verdict

SuspiciousApr 5, 2026, 3:06 AM

Verdict: suspicious
Confidence: medium
Model: gpt-5-mini
Summary: The skill is mostly coherent for a narrative/experience that calls a drifts.bot API, but it requests a single required API token in a way that conflicts with the registration flow and warrants clarification before use.
Guidance: This skill appears to be a narrative / experience wrapper around drifts.bot and asks for a single API token. Before installing: (1) confirm with the publisher whether YOUR_TOKEN is truly required up front or if you can register via the provided endpoint to obtain it; (2) if you must supply a token, use a limited-scope or throwaway account rather than a high‑privilege key; (3) verify drifts.bot's legitimacy and privacy policy (what data is sent to their API); (4) because the skill is instruction-only, inspect the full SKILL.md and any network calls it makes — if you want to test, run interactions with an account that has minimal access. If the publisher can't explain why the token is required before registration, treat the requirement as a red flag.

Review Dimensions

Purpose & Capability: noteThe skill is an instruction-only interactive experience that documents endpoints on drifts.bot; an API key (YOUR_TOKEN) is reasonable for write operations to that service. However, the registry metadata marks YOUR_TOKEN as required while the SKILL.md includes a registration endpoint that returns an api_key — making it unclear whether a token must be supplied up front or can be obtained via register.
Instruction Scope: okSKILL.md contains narrative text and API usage examples (base URL: https://drifts.bot) and instructs using Authorization: Bearer {{YOUR_TOKEN}} for write requests. It does not instruct the agent to read local files, other environment variables, or external endpoints outside the stated base URL.
Install Mechanism: okThere is no install spec and no code files — the skill is instruction-only, so nothing is written to disk and there is no package download risk.
Credentials: concernThe skill requires a single credential named YOUR_TOKEN as the primaryEnv, which aligns with a remote API key. The concern is the metadata declares this env var as required despite the SKILL.md providing a register endpoint that issues an api_key; the required flag may prevent onboarding flows that expect to create the key via the API. Confirm whether the token is actually optional until registration, and whether the token scope/permissions are limited.
Persistence & Privilege: okalways is false and there are no config path requirements. The skill can be invoked autonomously (platform default) but it does not request elevated or persistent system privileges.