Skillv1.5.0

ClawScan security

Peter Code Review · ClawHub's context-aware review of the artifact, metadata, and declared behavior.

Scanner verdict

BenignMar 3, 2026, 6:56 AM

Verdict: benign
Confidence: high
Model: gpt-5-mini
Summary: This is an instruction-only pre-commit code-review helper whose requested actions and scope match its stated purpose; it performs local git diff, lint/test/build checks and makes recommendations without hidden installs or external credentials.
Guidance: This skill is an instruction-driven pre-commit reviewer that will run git commands and whatever project-local scripts exist (lint, typecheck, tests, build, gate:db). Before using it: (1) run it in a trusted/isolated environment (or ensure no sensitive env vars are set), because npm/test/build scripts execute repository code and can perform network I/O or read host env; (2) ensure your machine has the developer tools the skill expects (git, node/npm/npx or ruff/pytest or go/cargo); (3) confirm you trust the repository code (or run inside a container/CI) if you let the agent execute build/test commands; and (4) note the metadata could be clearer about required binaries — if you need guarantees about what the skill will execute, ask the author for an explicit list of expected commands and any safe-run recommendations.

Review Dimensions

Purpose & Capability: noteThe skill's name/description (pre-submit quality gate) matches the instructions (identify git changes, run lint/type/test/build/gate checks, produce a report). Minor inconsistency: the registry metadata lists no required binaries, but the SKILL.md explicitly expects common developer tools (git, npm/npx, tsc, ruff, pytest, go, cargo, etc.). This is reasonable for a repo-local tool but the declared metadata could be more explicit about expected tools.
Instruction Scope: noteSKILL.md instructs the agent to run git commands and project-local commands (npm scripts, test/build commands) in the repository root and to read diffs and file lists — all coherent with a pre-commit review. It does not instruct sending data to external endpoints. Caution: executing project scripts (npm run build, workflow:check, gate:db, tests) will run code from the repository which could perform network I/O or read environment variables on the host; the skill documents behavior when commands are missing and requires recording failures.
Install Mechanism: okNo install spec and no code files — lowest technical risk. The skill is instruction-only so nothing is written to disk or downloaded by the skill itself.
Credentials: noteThe skill declares no required environment variables or credentials (which is appropriate). However, the commands it runs may implicitly rely on or read any environment variables present on the host (build/test scripts often use secrets or CI tokens). The skill does not request unrelated external credentials.
Persistence & Privilege: okalways: false and no persistent installation — the skill does not request elevated or permanent presence. It does not modify other skills or system-wide configs per the instructions provided.