manipulation-detector

PassAudited by ClawScan on May 1, 2026.

Overview

This skill is a simple local text-analysis helper with no evidence of network access, credential use, persistence, or hidden behavior.

This appears safe and purpose-aligned. Use it only on text or files you intend to analyze, and remember that it flags keyword patterns rather than proving manipulation or intent.

Findings (1)

Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.

NoteHigh Confidence

ASI04: Agentic Supply Chain Vulnerabilities

What this means

Users need Python available for the examples to work.

Why it was flagged

The skill's usage depends on python3, while the registry requirements declare no required binaries. This is a metadata completeness gap, but the dependency is expected for the included script and does not indicate hidden behavior.

Skill content

echo "Your text here" | python3 scripts/detect.py

Recommendation

Declare python3 as a required binary in the skill metadata, or make clear that it is an expected local prerequisite.