Back to skill
Skillv3.0.1
ClawScan security
Gcal Manager · ClawHub's context-aware review of the artifact, metadata, and declared behavior.
Scanner verdict
BenignMar 24, 2026, 12:39 AM
- Verdict
- benign
- Confidence
- high
- Model
- gpt-5-mini
- Summary
- The skill is an internally consistent, read-only reference tool that prints static documentation; it does not request credentials, perform network access, or install external software.
- Guidance
- This skill appears low-risk: it only prints static reference documentation and does not perform network calls or ask for secrets. Before installing, you can (1) inspect the included scripts/script.sh yourself (it is short and readable), (2) note the minor version string mismatch (not a security issue but worth checking for updates), and (3) avoid granting elevated runtime permissions if your environment restricts execution of arbitrary shell scripts. If you want extra assurance, run the tool in a sandboxed environment or review the file contents before enabling autonomous invocation.
Review Dimensions
- Purpose & Capability
- okName/description claim a local reference for Gcal Manager concepts and best practices. The included script and SKILL.md produce only static heredoc documentation; no unexpected credentials, binaries, or external services are required. (Minor note: the script's VERSION is 3.0.0 while registry metadata is 3.0.1 — likely a benign mismatch.)
- Instruction Scope
- okSKILL.md explicitly states commands output plain-text via heredoc with no network access or credentials. The shipped scripts implement only printing functions and a simple CLI dispatch; they do not read other files, environment variables, or contact external endpoints.
- Install Mechanism
- okNo install spec is provided (instruction-only). There are no downloads, package installs, or archive extractions. The only code is a small local shell script, which is low-risk when reviewed.
- Credentials
- okThe skill declares no required environment variables, no primary credential, and no config paths. The runtime script does not access environment variables or secrets beyond standard CLI args.
- Persistence & Privilege
- okalways is false and the skill is user-invocable with normal autonomous invocation allowed. It does not request permanent presence or modify other skills or system-wide settings.