Back to skill
Skillv1.0.0
ClawScan security
BOOK BRAIN VISUAL READER – LYGO 3-Brain + Visual Left/Right Brain Helper · ClawHub's context-aware review of the artifact, metadata, and declared behavior.
Scanner verdict
BenignFeb 11, 2026, 9:44 AM
- Verdict
- benign
- Confidence
- high
- Model
- gpt-5-mini
- Summary
- The skill is an instruction-only utility for organizing visual+text evidence in a local workspace and its requested actions and resources are consistent with that purpose.
- Guidance
- This skill appears coherent and limited to organizing visual and textual evidence in your agent's workspace. Before installing, confirm the agent's visual tools (browser automation, OCR) are trusted and sandboxed: screenshots can capture sensitive data, so restrict the agent's access to only the sites/files you intend it to see. Also verify that any public URLs the agent visits are safe and that long-term visual artifacts are stored in locations you control. If you want stricter safety, require human review before the agent uploads or shares screenshots externally or before it updates persistent indexes.
Review Dimensions
- Purpose & Capability
- okName and description describe a visual-aware 'book brain' workspace helper; the SKILL.md only asks the agent to create/extend local folders, keep reference stubs, take snapshots, and record logs and indexes. There are no external credentials, unrelated binaries, or surprising capabilities requested.
- Instruction Scope
- okInstructions are limited to maintaining a filesystem layout, recording reference stubs, using vision tools to capture and compare visual evidence, and consulting public URLs/APIs as sources. The SKILL.md explicitly advises not pasting full pages and to avoid overwriting existing files. It does not instruct the agent to read unrelated system files or secret environment variables.
- Install Mechanism
- okThis is an instruction-only skill with no install spec and no code files, so nothing is written to disk by an installer and there are no download URLs or package installs to review.
- Credentials
- okThe skill declares no required environment variables, no primary credential, and no config paths. The operations it describes (local file creation, screenshots, fetching public webpages/APIs) do not require additional secrets, so the lack of credential requests is proportionate.
- Persistence & Privilege
- okalways is false and the skill is user-invocable; it does not request persistent or elevated platform privileges nor does it instruct changes to other skills or global agent settings. Its intended persistence is simply creating/maintaining files within the agent workspace.