Back to skill
Skillv1.0.0
ClawScan security
Grep Tool · ClawHub's context-aware review of the artifact, metadata, and declared behavior.
Scanner verdict
BenignApr 28, 2026, 6:15 PM
- Verdict
- benign
- Confidence
- high
- Model
- gpt-5-mini
- Summary
- The skill is a straightforward pattern-search utility whose code and runtime instructions match its description and do not request credentials, network access, or unexpected system privileges.
- Guidance
- This skill appears to implement exactly what it claims: a local text-search tool. Before using it, consider: only run it against directories you intend to search (it will read any files you point it at, so avoid running on sensitive system directories or as root), be cautious piping secrets into it, and note it does not perform any network I/O or require credentials. If you want extra assurance, you can inspect or run the included scripts/grep.py locally in a sandbox before enabling the skill for autonomous use.
Review Dimensions
- Purpose & Capability
- okName/description (pattern search for files) aligns with the provided implementation (scripts/grep.py) and SKILL.md usage examples. No unrelated binaries, env vars, or capabilities are requested.
- Instruction Scope
- okSKILL.md simply documents how to run the utility; the included script reads stdin or files/directories provided by the user and does not access other system state, network endpoints, or secrets. Note: the tool will read any files/directories you point it at (including sensitive files) — which is expected for a grep-like tool.
- Install Mechanism
- okNo install spec (instruction-only skill) and a single, small Python script is included. There are no external downloads or archive extraction steps. Risk from installation is minimal.
- Credentials
- okThe skill requires no environment variables, credentials, or config paths. The code does not read env vars or attempt to access unrelated credentials.
- Persistence & Privilege
- okalways is false and the skill does not request permanent presence or modify other skills or system-wide settings. Autonomous invocation is allowed (platform default) and is reasonable for a user-invocable utility.