Back to skill
Skillv1.1.0
ClawScan security
Epstein Files Search · ClawHub's context-aware review of the artifact, metadata, and declared behavior.
Scanner verdict
BenignFeb 11, 2026, 9:27 AM
- Verdict
- benign
- Confidence
- high
- Model
- gpt-5-mini
- Summary
- The skill appears to do what it says — a small, instruction-only CLI that queries the DugganUSA public API for DOJ Epstein documents — with only minor metadata/binary mismatches to review before installing.
- Guidance
- This skill is small and self-contained: it simply calls the DugganUSA analytics API and returns results with DOJ PDF links. Before installing, consider: 1) Confirm you trust the DugganUSA endpoint (https://analytics.dugganusa.com) and its data provenance; the skill will make outbound HTTPS requests to that host. 2) The SKILL.md lists 'curl' but the script uses Node's fetch — ensure you have a recent Node version (Node 18+ recommended for global fetch and AbortSignal.timeout). 3) If you need strong supply-chain assurances, verify the registry/source identity (owner slug is present but homepage/source are sparse). 4) Run the script in a restricted environment if you want to observe network calls first. No credentials or local files are accessed by the code, so there is no obvious secret exfiltration path.
Review Dimensions
- Purpose & Capability
- noteName/description match the included code: the script queries https://analytics.dugganusa.com/api/v1 for an 'epstein_files' index and returns DOJ PDF links. Minor inconsistencies: the SKILL.md metadata lists a homepage (https://emc2ai.io) while the registry metadata earlier indicated none; SKILL.md declares required binaries 'node' and 'curl' but the provided script only uses node/fetch (curl is not invoked). These are likely harmless but unnecessary.
- Instruction Scope
- okRuntime instructions are limited and explicit (run node scripts/epstein.mjs search|stats). The script only reads CLI args, makes HTTPS requests to the DugganUSA API, and writes JSON to stdout / human lines to stderr. It does not read arbitrary local files, environment variables, or other system configuration.
- Install Mechanism
- okNo install spec — instruction-only with a single included script. Nothing is downloaded or written to disk beyond the provided files, which reduces risk.
- Credentials
- okNo credentials or environment variables are requested or accessed. The lack of secrets is proportionate to the stated purpose. (Note: the declared 'curl' requirement is unnecessary for the provided Node script.)
- Persistence & Privilege
- okThe skill does not request permanent presence (always: false) and does not modify other skills or system configuration. It only runs when invoked.