Back to skill
Skillv1.0.2
ClawScan security
DCL Skill Auditor — Pre-Install Security Scanner · ClawHub's context-aware review of the artifact, metadata, and declared behavior.
Scanner verdict
BenignApr 13, 2026, 3:03 AM
- Verdict
- Benign
- Confidence
- medium
- Model
- gpt-5-mini
- Summary
- The skill's declared purpose (an instruction-only static pre-install scanner) matches its instructions and requirements, but limited provenance and a small metadata/version mismatch reduce confidence.
- Guidance
- This skill appears internally consistent for a local, instruction-only pre-install scanner, but exercise caution before using it with sensitive content. Do not paste API keys, private keys, or other secrets into the conversation; redact or replace them when testing. Note the registry metadata/version mismatch and lack of homepage or source — verify the publisher separately if provenance matters. Because the skill is instruction-only, you can (and should) test it first on a small, benign SKILL.md to verify outputs and the DCL proof format before scanning real skill packages. If you need higher assurance, run an equivalent scan locally (using a copy of the SKILL.md and scripts) rather than pasting secrets into any hosted agent context.
Review Dimensions
- Purpose & Capability
- okThe SKILL.md describes a local, instruction-only static auditor that asks users to paste SKILL.md and scripts and performs pattern checks. It does not request unrelated credentials, binaries, or filesystem paths, so required capabilities are proportionate. Minor metadata inconsistency: registry version 1.0.2 vs SKILL.md version 1.1.0 and no homepage/source URL, which lowers provenance confidence.
- Instruction Scope
- noteRuntime instructions remain within the stated scope (compute hashes, scan pasted files, run checklist). The auditor asks the user to paste skill files into the conversation — this is necessary for operation but means users must avoid pasting secrets. The SKILL.md's checklist references patterns like '~/.ssh' etc. as detection rules (strings to match), not as instructions to read system files; that distinction should be observed when running the skill.
- Install Mechanism
- okNo install spec and no code files — instruction-only skill. No downloads or archive extraction are performed or required, minimizing install-time risk.
- Credentials
- okThe skill declares no required environment variables, credentials, or config paths. The checklist searches for credential-related patterns in user-provided content but does not itself request secrets or external credentials.
- Persistence & Privilege
- okalways is false and there is no install or persistent component. The skill does not request to modify system or agent configuration and does not claim autonomous persistent execution.