Back to skill
Skillv0.1.0
ClawScan security
Flash Sale · ClawHub's context-aware review of the artifact, metadata, and declared behavior.
Scanner verdict
BenignMay 1, 2026, 7:29 AM
- Verdict
- Benign
- Confidence
- high
- Model
- gpt-5.5
- Summary
- This is an instruction-only shopping-deals skill with no code, install step, credentials, or concrete authority to access accounts or make purchases.
- Guidance
- This skill appears safe to install as an informational flash-sale guide. As with any shopping assistant, avoid sharing passwords, payment details, SMS codes, or unnecessary account authorizations unless you clearly understand why they are needed.
Review Dimensions
- Purpose & Capability
- okThe stated purpose—flash-sale guidance, shopping workflow tips, and promotion information—is consistent with the SKILL.md content.
- Instruction Scope
- okThe instructions are informational and do not direct the agent to bypass user intent, force purchases, scrape accounts, or perform hidden actions.
- Install Mechanism
- okThere is no install spec and no code files, so the artifacts do not introduce package, script, or binary execution risk.
- Credentials
- okNo environment variables, credentials, local files, browser sessions, or system permissions are requested.
- Persistence & Privilege
- okThe artifacts do not define background workers, persistent state, account privileges, or ongoing automation.