Back to skill
Skillv1.0.7
ClawScan security
Apartment Cleaning · ClawHub's context-aware review of the artifact, metadata, and declared behavior.
Scanner verdict
BenignApr 18, 2026, 10:50 PM
- Verdict
- benign
- Confidence
- high
- Model
- gpt-5-mini
- Summary
- The skill is internally consistent: an instruction-only booking helper that calls a public claw.cleaning REST API and does not request extra credentials, installs, or unrelated access.
- Guidance
- This skill appears coherent, but you should still verify the service domain (https://claw.cleaning) is trustworthy before sharing personal data or making real bookings. Ensure the agent shows the full booking preview and you explicitly confirm before it sends a POST. Be aware the service claims no upfront payment (customer pays the cleaner in person), and avoid automating large numbers of bookings without rate-limit/backoff logic. If you need stronger privacy, use an email you control for test bookings and confirm cancellation/contact details (connor@getcolby.com) before relying on it.
Review Dimensions
- Purpose & Capability
- okName/description match the behavior: the SKILL.md exclusively describes checking availability, collecting customer details, and posting bookings to https://claw.cleaning. No unrelated services, binaries, or credentials are requested.
- Instruction Scope
- okRuntime instructions are narrowly scoped to making HTTPS requests (GET/POST) to the documented endpoints, collecting user-provided booking details, and showing a confirmation before booking. The instructions do not ask the agent to read local files, environment variables, or other system state.
- Install Mechanism
- okNo install spec or code is included (instruction-only), so nothing will be written to disk or downloaded during install.
- Credentials
- okThe skill requires no environment variables, credentials, or config paths. It only uses customer-supplied data (name, email, address) appropriate for booking.
- Persistence & Privilege
- okalways is false and the skill is user-invocable; it does not request permanent presence or to modify other skills or system settings.