Skillv0.1.0

ClawScan security

Ctrip · ClawHub's context-aware review of the artifact, metadata, and declared behavior.

BenignMar 16, 2026, 6:51 AM

Verdict: Benign
Confidence: high
Model: gpt-5-mini
Summary: The skill's requests and instructions are consistent with its stated purpose of reading and summarizing public Ctrip hotel and flight pages; it does not ask for extra credentials or install anything unusual.
Guidance: This skill is coherent with its purpose, but before installing consider: (1) clarify how the agent will obtain page content (will you manually open pages and click a trigger, paste HTML, or enable a browser automation extension?), (2) avoid using it for bulk scraping to stay within Ctrip's terms of service and to reduce risk of rate-limiting or IP blocking, and (3) do not provide any site credentials or sensitive data — the skill is meant only for public-page summaries. If you need automated fetching of dynamic pages, request details from the skill author about the exact mechanism and safeguards they expect to use.

Purpose & Capability: okName/description match the instructions: the SKILL.md describes reading and summarizing public hotel and flight pages from Ctrip and does not request unrelated credentials, binaries, or system access.
Instruction Scope: noteInstructions stay within the declared purpose (public-page retrieval and lightweight summaries). One minor ambiguity: the doc notes dynamic rendering and suggests 'manually open then trigger parsing' but does not specify how the agent obtains page content (e.g., via user-pasted HTML, a browser automation tool, or a fetch). This is an implementation detail to clarify, not an incoherence. The SKILL.md explicitly forbids ordering, reverse-engineering APIs, and bulk scraping, which limits scope.
Install Mechanism: okNo install specification or code is included (instruction-only), so nothing is downloaded or written to disk by the skill itself.
Credentials: okThe skill requires no environment variables, credentials, or config paths — proportional to a public-page summarizer and consistent with the stated constraints.
Persistence & Privilege: okalways is false and the skill is user-invocable; it does not request elevated or persistent privileges or modify other skills/configurations.