Back to skill
Skillv1.0.0
ClawScan security
agent-namer · ClawHub's context-aware review of the artifact, metadata, and declared behavior.
Scanner verdict
BenignMar 12, 2026, 9:00 AM
- Verdict
- benign
- Confidence
- high
- Model
- gpt-5-mini
- Summary
- The skill is internally consistent with its stated purpose (local name generation/management) and only reads/writes a local JSON file; no network, secrets, or unrelated system access are requested.
- Guidance
- This skill appears to do exactly what it claims: generate and manage '货xx' names using a local JSON file. Before installing/using: (1) review and back up scripts/used_names.json because the script will write to that file; (2) be aware the add command contains a bug (calls undefined save_used_names()) that can prevent new names from being saved — you may want to patch add_used_name to call update_used_names() or fix the function name; (3) run commands in a safe environment (no network access needed) and inspect/manage_name.py yourself before executing. There are no network calls or secret exfiltration behaviors in the provided code.
Review Dimensions
- Purpose & Capability
- okName and description match the code and SKILL.md: the tool generates and manages '货xx' names and uses a local scripts/used_names.json to track status. No unrelated credentials, binaries, or external services are required.
- Instruction Scope
- noteSKILL.md instructs running python3 scripts/manage_name.py (check/add/kill/list). The script only reads and writes the bundled scripts/used_names.json (expected behavior). Note: there's a coding bug — add_used_name calls save_used_names() which is undefined; this will raise an error when adding a brand-new name, so persistence may fail for that code path. Aside from that bug, instructions do not request other files, env vars, or external endpoints.
- Install Mechanism
- okNo install spec (instruction-only skill with included scripts). No downloads, package installs, or extraction steps are present.
- Credentials
- okThe skill requires no environment variables, credentials, or config paths. Its local file access (scripts/used_names.json) is proportionate to the stated purpose.
- Persistence & Privilege
- okalways is false and the skill does not request permanent system presence or modify other skills. It does write to its own bundled JSON file when updating names (expected and limited scope).