Skillv0.0.0-auto

ClawScan security

Technical Accounting Research Skill · ClawHub's context-aware review of the artifact, metadata, and declared behavior.

Scanner verdict

BenignApr 1, 2026, 3:28 AM

Verdict: benign
Confidence: medium
Model: gpt-5-mini
Summary: The skill's files and runtime instructions are consistent with its stated purpose (producing researched accounting memos and DOCX outputs) and do not request unrelated credentials or suspicious installs, though it requires a separate local repository (FinResearchClaw) which you should review before use.
Guidance: This skill appears coherent for producing researched accounting memoranda, but before installing or enabling it: 1) Review the external FinResearchClaw repository (https://github.com/ChipmunkRPA/FinResearchClaw) since the SKILL.md requires running it locally — any code there could execute on your machine. 2) Only clone and run that repo from a trustworthy location and inspect its code and dependencies. 3) Be aware the skill will perform web searches and include public SEC examples; that’s expected behavior for this use-case. 4) Note the skill will, by default, create DOCX files in ~/Downloads unless instructed otherwise — ensure that location is appropriate and does not overwrite sensitive files. 5) If you have strict security constraints, restrict autonomous invocation until you’ve audited FinResearchClaw and the python scripts used to generate output.

Review Dimensions

Purpose & Capability: okName, description, and included artifacts (SKILL.md, reference docs, and a DOCX generator script) align with delivering researched accounting memoranda and related outputs. The mandatory FinResearchClaw dependency is plausible as a research/drafting engine and matches the stated goal of deeper research and drafting quality.
Instruction Scope: noteSKILL.md requires the agent to: ask clarification questions, confirm format, perform web research (including public SEC filings), and wrap execution through a local FinResearchClaw repo (including creating a task-local virtualenv if needed). These actions are within an accounting-research scope, but running a local, mandatory repo as part of every substantive run gives that repo the ability to execute arbitrary code on the machine — you should audit the FinResearchClaw code before granting the skill runtime access.
Install Mechanism: okThere is no install spec and the skill is instruction-only aside from a harmless-looking Python script for DOCX generation. Nothing in the manifest downloads or extracts remote archives automatically. The only external installation the SKILL.md asks for is the user-driven cloning/installation of the FinResearchClaw repo and python-docx, which are standard but require manual review.
Credentials: okThe skill does not request environment variables, secrets, or special config paths. Its default requirements (Python, optional python-docx, and a local FinResearchClaw repo path) are proportionate to generating DOCX memos and running local research tooling.
Persistence & Privilege: okThe skill is not always-enabled and does not request system-wide persistence or modifications to other skills. It permits normal autonomous invocation (platform default), but it does mandate invoking a local repo when producing substantive output — review that repo's behavior before allowing autonomous runs.