Back to skill
Skillv2.3.4
ClawScan security
Read, Search & Extract Web Pages by Dokobot · ClawHub's context-aware review of the artifact, metadata, and declared behavior.
Scanner verdict
BenignApr 22, 2026, 2:24 AM
- Verdict
- benign
- Confidence
- medium
- Model
- gpt-5-mini
- Summary
- The skill is internally consistent with its stated purpose (reading pages via a real browser) but requires installing a CLI, a browser extension with Remote Control, and may access logged-in browser sessions — review extension permissions and prefer local mode if you care about private data.
- Guidance
- This skill appears to do what it says (use your browser to render pages). Before installing or using it: 1) Prefer local mode (dokobot install-bridge / --local) so page content stays on your machine. 2) If you enable Remote Control or use a DOKO_API_KEY, understand the extension may be able to read pages your browser can access (including logged-in sites and cookies); only enable this for trusted machines/services. 3) Verify the @dokobot/cli package and the Chrome extension source (the SKILL.md points to a GitHub repo) before installing; review npm package maintainers and extension permissions. 4) Use ephemeral API keys and rotate/revoke them if you stop trusting the service. 5) If you need strict privacy, avoid remote mode and avoid granting the extension elevated or persistent permissions.
Review Dimensions
- Purpose & Capability
- okName/description (read & extract rendered web pages using a real Chrome browser) match the declared requirements: it needs a dokobot CLI binary, a Chrome extension, and optionally a DOKO_API_KEY for remote mode. These requirements are proportionate to the stated functionality.
- Instruction Scope
- noteSKILL.md instructs the agent to call the dokobot CLI (read, search, download images, manage sessions). It explicitly supports reading pages that require logged-in browser sessions and downloading images, which is within scope but means the tool will access whatever the browser session can reach (cookies, private content). The instructions do not tell the agent to read unrelated local files or environment variables.
- Install Mechanism
- okThis is an instruction-only skill with no install spec in the registry. The README recommends installing @dokobot/cli via npm and a Chrome extension; npm/global installs and extensions are normal for this use case. There is no direct download-from-arbitrary-URL in the skill itself.
- Credentials
- concernThe skill declares no required env vars and only an optional DOKO_API_KEY for remote mode, which is proportionate. However, enabling the browser extension's Remote Control (documented in the SKILL.md) grants the service broad access to the browser and logged-in sessions — a high-privilege capability that goes beyond a simple API key and has real privacy implications.
- Persistence & Privilege
- noteThe skill is not always-enabled and does not request persistent registry-level privileges. Nonetheless, the recommended browser extension and the Remote Control feature introduce persistent, powerful access to the browser; remote mode implies continuing networked access to browser-rendered content until you disable the extension's Remote Control or the API key.