Back to skill
Skillv1.0.4
ClawScan security
Inner Life Evolve · ClawHub's context-aware review of the artifact, metadata, and declared behavior.
Scanner verdict
BenignFeb 28, 2026, 4:51 PM
- Verdict
- benign
- Confidence
- high
- Model
- gpt-5-mini
- Summary
- The skill's requests and instructions match its stated purpose: it reads agent state and memory to generate improvement proposals and only writes proposed tasks to tasks/QUEUE.md (it does not auto-execute).
- Guidance
- This skill appears to do what it says: it reads your agent's state and memory to propose specific improvements and writes proposals to tasks/QUEUE.md without auto-executing them. Before installing, (1) ensure inner-life-core is installed and the referenced files (memory/inner-state.json, BRAIN.md, tasks/QUEUE.md) exist, (2) confirm you are comfortable with a tool that reads agent memory (these files can contain sensitive information), (3) have jq available on the host or install it, and (4) review every [EVOLVER] proposal before approving any changes. If you want tighter privacy, consider redacting or limiting what you store in memory/ or adjusting access controls for those files.
Review Dimensions
- Purpose & Capability
- okName/description (agent self-improvement) align with the declared behavior: reading agent state/memory and producing proposals. The single required binary (jq) is reasonable for processing JSON state files.
- Instruction Scope
- noteSKILL.md explicitly directs deep reads of agent files (BRAIN.md, SELF.md, memory/* including inner-state.json, and a week digest) and to write only to tasks/QUEUE.md. This is appropriate for an evolver, but it does involve broad read access to potentially sensitive agent memory—expected for the stated purpose but privacy-sensitive.
- Install Mechanism
- okInstruction-only skill with no install spec or downloaded code. Lowest-risk install model; nothing is written to disk beyond the skill's normal writes (tasks/QUEUE.md).
- Credentials
- okNo environment variables, secrets, or external credentials are requested. File reads/writes are scoped to agent state and the tasks queue, matching the skill's purpose.
- Persistence & Privilege
- okalways is false and the skill is user-invocable. It requests no persistent elevated privileges or modifications to other skills' configs. Autonomous invocation is allowed by default (platform norm) but the skill's safety rules explicitly forbid auto-execution of proposals.