v2.0.3

Apollo Client

BenignClawScan verdict for this skill. Analyzed May 1, 2026, 7:41 AM.

Analysis

This skill appears read-only and benign, with only a minor version mismatch across its package artifacts.

GuidanceThis looks safe for read-only reference use. Before installing, note the version inconsistency, but the artifacts do not show network access, credential use, file changes, persistence, or other high-impact behavior.

Findings (1)

Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.

Abnormal behavior control

Checks for instructions or behavior that redirect the agent, misuse tools, execute unexpected code, cascade across systems, exploit user trust, or continue outside the intended task.

Agentic Supply Chain Vulnerabilities

SeverityInfoConfidenceHighStatusNote

metadata

Version: 2.0.3

This registry version differs from SKILL.md's version "2.0.2" and scripts/script.sh's VERSION="2.0.1", which is a minor provenance/package hygiene inconsistency rather than evidence of unsafe behavior.

User impactUsers may have trouble confirming exactly which version of the skill they are using, but the provided code is static and read-only.

RecommendationThe publisher should align version numbers across metadata, SKILL.md, and the script; users can verify the source if precise version provenance matters.