Back to skill
Skillv2.0.1
ClawScan security
Perf Analyzer · ClawHub's context-aware review of the artifact, metadata, and declared behavior.
Scanner verdict
BenignMay 1, 2026, 7:44 AM
- Verdict
- Benign
- Confidence
- high
- Model
- gpt-5.5
- Summary
- This appears to be a static reference-documentation skill that does not request credentials, network access, persistence, or mutation permissions.
- Guidance
- This skill looks safe to install as a reference aid. It appears to provide static documentation only; users should still treat its operational advice as generic guidance rather than verified product-specific documentation.
Review Dimensions
- Purpose & Capability
- okThe stated purpose is quick reference documentation, and the included script only prints static heredoc documentation for matching topics.
- Instruction Scope
- okThe instructions are limited to reference commands such as intro, quickstart, patterns, debugging, performance, security, migration, and cheatsheet.
- Install Mechanism
- okNo install specification, required binaries, environment variables, credentials, or config paths are declared; the included shell file does not show install-time behavior.
- Credentials
- okArtifacts do not show file writes, network calls, credential use, subprocess chaining, or system mutation beyond printing static text.
- Persistence & Privilege
- okNo persistence, background execution, privilege escalation, account access, or stored state is evidenced in the provided artifacts.