Skillv1.0.0

ClawScan security

China Tax Law · ClawHub's context-aware review of the artifact, metadata, and declared behavior.

Scanner verdict

BenignMar 15, 2026, 1:01 AM

Verdict: benign
Confidence: medium
Model: gpt-5-mini
Summary: The skill is an instruction-only Chinese tax-law assistant whose requested resources and runtime instructions are coherent with its stated purpose, but provenance is unknown and a referenced resource file is missing.
Guidance: This skill appears to do what it says: provide Chinese tax-law guidance using the included reference docs. Before installing: 1) Note the package has unknown provenance (no homepage, anonymous owner) — if you need strong trust, prefer skills from known authors or organizations. 2) The SKILL.md references references/tax-treaties.md but that file is missing — confirm the author supplies all promised materials. 3) The skill calls out other skills (legal-doc-writer, case-research); review those skills' permissions and behavior before enabling integration. 4) Do not paste sensitive credentials or full client PII into the skill; treat outputs as informational and verify citations/dates against official sources (chinatax.gov.cn) before relying on them for formal legal actions. 5) If you require formal legal advice, consult a licensed practitioner and consider routing sensitive client data only through audited tools.

Review Dimensions

Purpose & Capability: okThe name, description, and included reference documents (tax rates, compliance checklist) align with a China tax-law advisory skill. The skill does not request unrelated binaries, credentials, or config paths. Note: SKILL.md references references/tax-treaties.md, but that file is not present in the bundle; also the package owner/source is unknown and there is no homepage, which reduces provenance assurance.
Instruction Scope: okSKILL.md contains narrowly scoped instructions for tax consultation, tax planning, compliance checks and dispute workflows, asking the agent to cite laws and prompt users to verify on official sites. The instructions do not tell the agent to read arbitrary system files, access credentials, or transmit data to unexpected endpoints. It does reference other skills (legal-doc-writer, case-research) — which is expected but means those skills' behaviors could affect runtime and should be reviewed.
Install Mechanism: okNo install spec and no code files beyond static reference documents and SKILL.md, so nothing is downloaded or written during install. This is the lowest-risk install profile.
Credentials: okThe skill declares no required environment variables, credentials, or config paths. There is no disproportionate secret or environment access requested.
Persistence & Privilege: okalways:false and default model invocation settings are used. The skill does not request persistent/privileged presence or modifications to other skills or system-wide agent settings.