Back to skill
Skillv0.1.0
ClawScan security
Bank of Korea ECOS CLI · ClawHub's context-aware review of the artifact, metadata, and declared behavior.
Scanner verdict
SuspiciousApr 22, 2026, 12:06 AM
- Verdict
- suspicious
- Confidence
- medium
- Model
- gpt-5-mini
- Summary
- The skill's declared credential (BOK_API_KEY) and runtime commands match a Bank of Korea ECOS CLI, but the SKILL.md references installing and running a local Python package without providing a repository or any code — an incoherence you should resolve before trusting the skill.
- Guidance
- This skill appears to describe a legitimate ECOS CLI and only needs your ECOS API key, but the SKILL.md expects you to clone and install a local Python package yet provides no repository or packaged code. Before installing or providing your BOK_API_KEY: 1) Ask the skill author for the repository URL or a packaged release you can inspect. 2) If you clone/install code, review it locally (or in an isolated environment) before running pip install -e . 3) Confirm ecos-cli is a known tool or comes from a trusted source; do not paste your API key into unknown scripts. 4) If you only need to call ECOS, consider using curl or writing a small script yourself that calls the documented endpoints so you control the code that sees the key.
Review Dimensions
- Purpose & Capability
- noteThe name/description (ECOS CLI) aligns with the single required env var (BOK_API_KEY). However, the installation instructions assume a local Python package (pip install -e .) and say "Clone and run" but do not provide a repository URL or any packaged binary — the skill bundle contains no code. That mismatch is unexplained.
- Instruction Scope
- noteSKILL.md only instructs using the ECOS API via an ecos-cli command and reading BOK_API_KEY/BOK_LANG. It does not request unrelated files, paths, or extra credentials. The scope is appropriate for the described function, but the runtime instructions assume a local project layout (venv, pip install -e .) that isn't present or linked.
- Install Mechanism
- okThere is no install spec in the registry (instruction-only skill), which is low-risk. The only install instructions are in SKILL.md and require cloning/packaging a local Python project — but no external download URL or package is provided by the skill itself.
- Credentials
- okOnly one credential is required (BOK_API_KEY) and that matches the API the CLI is meant to call. The optional BOK_LANG is reasonable. There are no other env vars or secrets requested.
- Persistence & Privilege
- okThe skill is not always-enabled and allows user invocation/autonomous invocation per platform defaults. It does not request persistent system-wide privileges or modify other skills' configs.