Skillv1.1.0

ClawScan security

NEXUS Data Profile · ClawHub's context-aware review of the artifact, metadata, and declared behavior.

BenignApr 9, 2026, 5:09 PM

Verdict: benign
Confidence: medium
Model: gpt-5-mini
Summary: The skill's claims, required credential, and runtime instructions are internally consistent for a paid, networked data-profiling service, but you should verify the external service and treat the payment credential carefully before installing.
Guidance: This skill is coherent for a paid remote data-profiling API, but exercise caution before installing: 1) Verify the operator/domain (ai-service-hub-15.emergent.host) and review their privacy/terms — your dataset will be transmitted off-host. 2) Treat NEXUS_PAYMENT_PROOF as a sensitive credential: do not store private keys in environment variables you can't rotate, and do not let the agent sign transactions on your behalf. 3) Test with X-Payment-Proof: sandbox_test or non-sensitive data first to confirm behavior and cost. 4) If you need to post signed Stellar XDRs, sign them locally and only submit already-signed XDRs; never expose your secret keys. 5) If unsure about the provider's trustworthiness, do not install; consider using a local/offline profiler instead.

Purpose & Capability: okName/description (data profiling) align with instructions that call a remote NEXUS API and require a payment proof; requiring a payment credential (NEXUS_PAYMENT_PROOF) is coherent for a paid API.
Instruction Scope: noteSKILL.md only instructs network calls to a single external host (https://ai-service-hub-15.emergent.host) and the use of payment headers; it explicitly disallows filesystem and shell access. Caution: it asks you to POST signed Stellar XDRs for fee sponsorship and include payment proofs in headers — these operations can expose payment-related sensitive data if misused, so avoid providing private keys to the agent and prefer sandbox_test for initial tests.
Install Mechanism: okNo install spec and no code files (instruction-only) — nothing will be written or executed locally by the skill itself, which reduces installation risk.
Credentials: noteThe skill requests one environment variable (NEXUS_PAYMENT_PROOF) as the primary credential. That single secret is proportionate to a paid API, but it is sensitive payment material; the README/SKILL.md justifies it for legacy header usage but does not describe its format or security handling.
Persistence & Privilege: okSkill is not always-enabled and does not request persistent platform privileges or attempt to modify other skills or system config. Agent autonomous invocation is allowed (platform default) but not a special privilege here.