Skillv0.1.0

ClawScan security

Korea Eximbank Exchange CLI · ClawHub's context-aware review of the artifact, metadata, and declared behavior.

Scanner verdict

SuspiciousApr 23, 2026, 12:04 AM

Verdict: suspicious
Confidence: medium
Model: gpt-5-mini
Summary: The skill's declared purpose and single required credential (KOREAEXIM_API_KEY) match, but the runtime instructions reference a CLI and an in-repo pip install even though no code or install spec is included — this mismatch is suspicious and requires user verification before use.
Guidance: This skill appears to be an instructions-only wrapper for a CLI that calls Korea Eximbank's OpenAPI and legitimately needs only your KOREAEXIM_API_KEY. However, the skill bundle does not include the CLI code or an install spec even though SKILL.md tells you to `pip install -e .` and run `eximbank-exchange`. Before installing or running anything, do the following: 1) Inspect the referenced GitHub repo (https://github.com/ChloePark85/korea-eximbank-exchange-cli) yourself — review the source, setup.py/pyproject, and entry points that create the CLI. 2) If you decide to install, avoid running `pip install -e .` in a production environment — use an isolated virtualenv or container. 3) Verify the package integrity (releases/tags) and prefer installing from an official released package rather than arbitrary master/main snapshots. 4) Limit the API key's scope and do not reuse high-privilege credentials; rotate the key if you test it with an untrusted package. 5) If you only need a quick query, consider making direct HTTP calls to the documented API endpoint instead of installing unverified code. These steps reduce supply-chain and credential-exposure risks.

Review Dimensions

Purpose & Capability: concernThe skill claims to be a CLI for Korea Eximbank OpenAPI and requires only KOREAEXIM_API_KEY, which is appropriate. However, there are no code files or install specification bundled with the skill despite the README showing a package/CLI (eximbank-exchange). That gap makes the skill incomplete or misleading: either the skill expects the user/agent to fetch/install external code (not documented in the skill metadata) or the packaged CLI is missing.
Instruction Scope: noteSKILL.md only instructs to set KOREAEXIM_API_KEY and run the CLI (eximbank-exchange) and includes a pip install -e . instruction. The instructions reference only the declared env var and the official API URL — no unrelated files, secrets, or system paths are requested. The concern is the instruction to run pip install -e . (which modifies the local Python environment) while no package is provided in the skill bundle.
Install Mechanism: noteThere is no install spec in the skill metadata (instruction-only), which is low-install risk. But SKILL.md suggests installing the package locally with `pip install -e .`; since the skill package contents are not included, that instruction is inconsistent and would require obtaining code externally (e.g., from the GitHub repo). Downloading and pip-installing code from an external source carries typical supply-chain risk and should be reviewed before running.
Credentials: okOnly a single environment variable (KOREAEXIM_API_KEY) is required and that aligns with the skill's purpose of querying the Korea Eximbank OpenAPI. No unrelated credentials or config paths are requested.
Persistence & Privilege: okThe skill is not marked always:true and uses default autonomous-invocation settings. It does not request persistent system privileges or modification of other skills' configurations. No additional privilege concerns detected.