Skillv2.0.0

ClawScan security

Trigger · ClawHub's context-aware review of the artifact, metadata, and declared behavior.

Scanner verdict

BenignMar 17, 2026, 7:16 PM

Verdict: Benign
Confidence: high
Model: gpt-5-mini
Summary: The skill is a local command-line logging/trigger utility that writes data under the user's home directory and does not request credentials or perform network activity; a small documentation mismatch (TRIGGER_DIR) is present but nothing appears malicious.
Guidance: This skill appears to be a simple local CLI tool that stores logs under ~/.local/share/trigger and does not contact the network or require credentials. Before installing or running: (1) review the script (scripts/script.sh) yourself — it will create and write files in your home directory; (2) be aware the SKILL.md mentions TRIGGER_DIR but the script currently ignores that env var; if you need a custom data directory you may want to modify the script or ask the author; (3) run the script as your normal user, not root; and (4) if you plan to run it in automation, verify outputs and file permissions to avoid accidental exposure of logged content.

Review Dimensions

Purpose & Capability: noteThe package advertises a CLI 'trigger' utility and the included bash script implements many expected features (add/plan/track/export/status/etc.). This is generally consistent with the description. Minor mismatch: SKILL.md says you can set TRIGGER_DIR to change the data directory, but the script as provided uses DATA_DIR="${HOME}/.local/share/trigger" and does not read TRIGGER_DIR, so the documentation overstates configurability.
Instruction Scope: noteSKILL.md instructs normal local CLI usage and the script's commands align with that. The instructions do not ask the agent to read unrelated system files, exfiltrate data, or contact external endpoints. Notes: SKILL.md lists a smaller set of commands than the script actually implements, and the documented TRIGGER_DIR environment override is not implemented in the script.
Install Mechanism: okNo install spec or remote downloads are used; the skill is instruction-only with an included script file. No external packages or network fetches are present in the repository files provided.
Credentials: noteThe skill requests no credentials and no required environment variables. The only environment/config access is to the user's HOME (to create ~/.local/share/trigger). SKILL.md mentions TRIGGER_DIR as configurable via env var, but the script does not honor it—this is an internal inconsistency but not a credential risk.
Persistence & Privilege: okThe skill does not request 'always' presence, does not modify other skills or system-wide configs, and only writes to its own data directory under the user's home. It runs with normal user privileges.