v1.0.0

Tcpdump

BenignClawScan verdict for this skill. Analyzed May 1, 2026, 8:06 AM.

Analysis

This appears to be a benign reference skill that uses an included shell script only to print static tcpdump-related guidance.

GuidanceThis skill appears safe for use as a static tcpdump reference. The only thing to note is that it invokes an included shell script, so review future updates if the script begins running real tcpdump commands or accessing system/network data.

Findings (1)

Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.

Abnormal behavior control

Checks for instructions or behavior that redirect the agent, misuse tools, execute unexpected code, cascade across systems, exploit user trust, or continue outside the intended task.

Unexpected Code Execution

SeverityInfoConfidenceHighStatusNote

scripts/script.sh

#!/usr/bin/env bash ... case "$CMD" in
    intro) cmd_intro "$@" ;; ... help|--help|-h) show_help ;;

The skill's command interface is an executable bash script. This is worth noticing, but the reviewed script only dispatches to functions that print static heredoc reference text and does not call tcpdump, install packages, access files, or make network requests.

User impactIf invoked, the agent may run the included shell script, but the provided script content shows no side effects beyond displaying reference information.

RecommendationUse normally for reference, and re-review the script if future versions change from static guidance to running system or network commands.