ClawHub
Back to skill
v1.0.0

Instruction Anchor Guard

BenignClawScan verdict for this skill. Analyzed May 1, 2026, 6:14 AM.

Analysis

This instruction-only skill is purpose-aligned, but it intentionally stores persistent instruction anchors that can influence future planning.

GuidanceThis skill appears safe for its stated purpose. Before installing, be comfortable with it keeping a local ledger of important instructions that may affect future turns, and review or delete anchors that become outdated.

Findings (2)

Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.

Abnormal behavior control

Checks for instructions or behavior that redirect the agent, misuse tools, execute unexpected code, cascade across systems, exploit user trust, or continue outside the intended task.

Agentic Supply Chain Vulnerabilities
SeverityInfoConfidenceHighStatusNote
metadata
Source: unknown; Homepage: none; Version: 1.0.0

The registry metadata lacks a source/homepage and does not align with the SKILL.md frontmatter version `1.1.0`; this is a provenance/versioning note, not evidence of malicious behavior.

User impactIt is harder to independently verify the publisher history or exact packaged version before installing.
RecommendationConfirm the skill comes from a trusted publisher and that the installed version is the one you intended to use.
Sensitive data protection

Checks for exposed credentials, poisoned memory or context, unclear communication boundaries, or sensitive data that could leave the user's control.

Memory and Context Poisoning
SeverityLowConfidenceHighStatusNote
SKILL.md
Store anchors in first available path: `memory/anchors.md` ... `.anchors.md`; ... Load active anchors ... Inject `ANCHOR_SET` into planning phase before tool execution

The skill intentionally persists user instructions and reuses them in future planning, which is purpose-aligned but means stale or mistaken anchors can keep influencing behavior.

User impactImportant instructions may persist across long sessions or compaction and shape later actions, including if an anchor becomes outdated or was captured too broadly.
RecommendationUse task or session scope when possible, avoid storing sensitive personal data, and periodically review `/anchors list` and pause or delete anchors that no longer apply.