Skillv0.3.5

ClawScan security

letsping · ClawHub's context-aware review of the artifact, metadata, and declared behavior.

BenignMar 4, 2026, 10:31 PM

Verdict: benign
Confidence: medium
Model: gpt-5-mini
Summary: The skill's requirements and runtime instructions are coherent with its stated purpose (human approval for high-risk actions), but it relies on a third-party npm package/GitHub repo and an external service key—so the user should vet that code/service before installing.
Guidance: This skill appears to do what it says, but it depends on a third-party npm package and an external service (letsping.co). Before installing: 1) Inspect the @letsping/openclaw-skill package source (or the GitHub repo) to confirm it only forwards approval requests and does not exfiltrate data. 2) Use a dedicated LETSPING_API_KEY with the least privileges possible and rotate/revoke it if needed. 3) Test in a sandbox agent first (verify the agent actually pauses and only uses approved payloads). 4) Check the npm package maintainers, recent publish history, and package integrity (version, checksum). 5) Monitor gateway logs and network calls after enabling the skill so you can detect unexpected behavior.

Purpose & Capability: okName/description request an approval gate for high-risk actions; the only declared environment requirement is LETSPING_API_KEY which is directly relevant to authenticating to the LetsPing approval service. The examples and required parameters (tool_name, args_json, risk_reason) align with the stated purpose.
Instruction Scope: okSKILL.md instructs the agent to call letsping_ask before high-risk operations and to use only the authorized payload after approval. It does not ask the agent to read unrelated files, other credentials, or transmit data to unexpected endpoints beyond letsping.co and GitHub for install instructions.
Install Mechanism: noteThe skill is instruction-only but tells users to install the npm package @letsping/openclaw-skill or clone a GitHub repo. This is expected for functionality but introduces typical third-party package risks (you must trust the npm package/repo). No arbitrary URL/extract install is suggested.
Credentials: okOnly LETSPING_API_KEY is required, which is proportionate to a service that mediates approvals. The README and SKILL.md explicitly call this key highly sensitive and advise using a dedicated key and revoking if compromised.
Persistence & Privilege: okSkill does not request always:true and does not claim system-wide configuration changes. disable-model-invocation is false (normal). No config paths or other skills' credentials are requested.