Back to skill
Skillv2.0.0
ClawScan security
Database Design · ClawHub's context-aware review of the artifact, metadata, and declared behavior.
Scanner verdict
BenignMar 17, 2026, 6:59 PM
- Verdict
- benign
- Confidence
- high
- Model
- gpt-5-mini
- Summary
- Files and instructions match a local, offline database-design helper; it writes logs/data to a user data directory but does not request credentials or perform network calls.
- Guidance
- This skill appears to do what it says: generate schemas, ER diagrams, indexes, migrations, and simple data tooling. Before installing or invoking it: 1) be aware it will create and write files under a data directory (defaults to ~/.local/share/database-design) — set DATABASE_DESIGN_DIR if you prefer a different location or sandbox it; 2) note the SKILL.md refers to a `database-design` command but the bundle provides scripts named db.sh and script.sh — an install step or manual invocation (./scripts/db.sh or ./scripts/script.sh) may be required; 3) inspect the included scripts yourself (they are small and offline) before use; and 4) if you need stricter isolation, run the skill in a disposable environment since it writes local logs but does not perform network access or request secrets.
Review Dimensions
- Purpose & Capability
- okName/description (database design, normalization, indexes, migrations, ER diagrams) aligns with the included scripts which generate SQL, ER diagrams, sample data and basic data tooling. No unrelated credentials, binaries, or services are requested.
- Instruction Scope
- concernSKILL.md instructs users to run a `database-design` command, but there is no install spec that places an executable named `database-design` on PATH. The bundle contains scripts (scripts/db.sh and scripts/script.sh) that implement functionality, but the mismatch between the documented command name and the provided filenames is an inconsistency that could lead the agent to try to run a non-existent binary or to choose any available command; otherwise the instructions stay within the stated scope and do not request unrelated files or secrets.
- Install Mechanism
- okNo install spec or remote downloads. The skill is instruction-first and includes local shell scripts. No network fetches, package installs, or archive extraction are present in the files reviewed.
- Credentials
- noteNo required environment variables or credentials are declared. The scripts optionally respect DATABASE_DESIGN_DIR (and XDG_DATA_HOME / HOME) to create a local data directory and write history.log and data.log there. Reading HOME/XDG_DATA_HOME to decide the path is normal, but the skill will write persistent files under the user's home directory unless DATABASE_DESIGN_DIR is set.
- Persistence & Privilege
- notealways:false and no autonomous privilege escalation. The scripts create and write to a local data directory (~/.local/share/database-design by default). This is limited persistence (local files only) and the skill does not modify other skills or system-wide agent settings.