Skillv1.0.1

ClawScan security

Model Verifier · ClawHub's context-aware review of the artifact, metadata, and declared behavior.

BenignMar 8, 2026, 2:33 PM

Verdict: benign
Confidence: high
Model: gpt-5-mini
Summary: Instruction-only skill that asks a model a set of harmless tests to verify claimed capabilities; it requires no installs, credentials, or unusual system access and is internally consistent with its stated purpose.
Guidance: This is an instruction-only verifier that doesn't ask for secrets or install code, so it is internally coherent. Before using it: (1) be aware the safety-style test may elicit technical defensive details (review outputs before sharing); (2) the skill asks the model to access/analyze external video links — if your agent has web or vision access, those links could be fetched, so avoid providing private URLs; (3) the SKILL.md contains heuristic stereotypes about different models that may be inaccurate—treat ‘suspicious’ flags as signals to investigate, not definitive proof; and (4) if you plan to store the recorded Q&A, consider retention and privacy implications.

Purpose & Capability: okThe name/description (verify model identity across cutoff, safety style, multimodal, and reasoning) match the SKILL.md instructions. The skill does not request unrelated binaries, environment variables, or config paths.
Instruction Scope: noteInstructions stay within verification scope (prompt the model with specific questions and record responses). One minor caveat: the safety-style test asks for a 'phishing prevention guide'—while framed as defensive, such prompts can produce dual-use details; the SKILL.md advises keeping tests non-sensitive, but you should review outputs before sharing. The file also uses model-specific behavioral stereotypes (e.g., ‘Claude thinks in Chinese’) which are heuristic and may be inaccurate.
Install Mechanism: okNo install spec and no code files — instruction-only. Nothing will be downloaded or written to disk by the skill itself.
Credentials: okThe skill requests no credentials, environment variables, or config paths. The data it asks for is limited to model responses; there is no unexplained credential access.
Persistence & Privilege: okalways is false and the skill does not request persistent system privileges or modify other skills. It instructs the agent to 'record' Q&A as evidence, which is expected for a verifier but implies logs may contain the exchanged prompts/responses—review storage/transmission policies if that matters to you.