Pc Health Check
PassAudited by ClawScan on May 10, 2026.
Overview
This appears to be a legitimate Windows health-check skill, but it runs local PowerShell commands and may report detailed system information, so users should review what it collects and where reports are saved.
This skill is coherent for Windows PC diagnostics and does not show evidence of malicious behavior. Before installing, be comfortable with it running local PowerShell health checks and producing reports that may include system configuration details. Use quick mode for less detailed checks, save reports only to trusted locations, and avoid sharing generated reports without reviewing them first.
Findings (4)
Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.
Running the skill lets it execute diagnostic PowerShell queries on the local PC.
The script executes local PowerShell commands. That is powerful local command execution, but it is disclosed and purpose-aligned with collecting Windows health information.
const { execSync } = require('child_process'); ... execSync(`powershell -NoProfile -Command "[Console]::OutputEncoding = [Text.Encoding]::UTF8; ${cmd.replace(/"/g, '\\"')}"`, {Install only if you trust the skill, and run it only for intended health-check tasks. Prefer quick mode if you only need basic diagnostics.
Generated reports may reveal installed software, startup commands, system errors, listening ports, and other local configuration details.
The full scan gathers local event messages, startup commands, process data, and port/process information that may include private system details and then formats them for AI analysis/reporting.
Get-WinEvent ... Select-Object TimeCreated, Id, LevelDisplayName, Message ... Get-CimInstance Win32_StartupCommand | Select-Object Name, Command, Location
Keep generated reports private, avoid sharing them publicly without review, and use quick mode if detailed process/startup/event information is unnecessary.
If used carelessly, the report could be written somewhere unintended or overwrite an existing file depending on the script's save behavior.
The skill supports saving reports to a user-specified path and suppressing terminal output. This is disclosed and useful, but report writes should remain user-directed.
--save <path> 保存报告到指定路径 --silent 静默模式,仅保存文件,不输出到终端
Specify safe report paths explicitly and avoid using --silent unless you intentionally want file-only output.
Users have less upstream context for verifying who maintains the skill or where the source originated.
The package has no external dependency installer, which limits supply-chain exposure, but provenance and installation metadata are minimal.
Source: unknown Homepage: none Install specifications: No install spec — this is an instruction-only skill.
Review the included script before installation and prefer installing from a trusted registry/source.