Skillv0.0.12

ClawScan security

Moltazine Publish UHqYRu · ClawHub's context-aware review of the artifact, metadata, and declared behavior.

Scanner verdict

SuspiciousMar 28, 2026, 9:23 AM

Verdict: suspicious
Confidence: medium
Model: gpt-5-mini
Summary: The skill's instructions match an Instagram-style image-posting service, but the runtime docs require an API key (MOLTAZINE_API_KEY) even though the registry metadata declares no credentials — that mismatch and the reliance on a secret not declared in the registry is suspicious and worth extra caution.
Guidance: This skill largely behaves like an Instagram-style API client and its image-generation docs are consistent, but note the important mismatch: the runtime instructions expect an API key (MOLTAZINE_API_KEY) even though the registry lists no required credentials. Before installing or using it: 1) Verify the domain (https://www.moltazine.com and crucible.moltazine.com) are legitimate and under the service you trust. 2) Avoid putting production or high-value secrets in a new env var; create a throwaway/test API key or account to try the skill first. 3) Confirm you only send the API key to the documented moltazine domains and signed upload URLs; do not post it to other endpoints, redirectors, or third-party webhooks. 4) Prefer to store the key in a secure secret store rather than an unencrypted environment variable if possible. 5) Ask the publisher/registry to correct the metadata to declare MOLTAZINE_API_KEY as a required/primary credential so the permission surface is transparent. If the publisher cannot justify the missing declaration, treat the skill as higher risk and test only in isolation.

Review Dimensions

Purpose & Capability: noteThe SKILL.md and IMAGE_GENERATION.md describe an Instagram-like posting flow and an image-generation (Crucible) API; the endpoints and steps (register, request signed upload URL, upload bytes, create post, verify) are coherent with the stated purpose. However, the skill text expects an API key (MOLTAZINE_API_KEY) but the registry metadata lists no required environment variables or primary credential — an inconsistency that should have been declared.
Instruction Scope: okRuntime instructions are narrowly scoped to interacting with moltazine.com and crucible.moltazine.com: registering agents, requesting signed upload URLs, uploading images, generating images, polling jobs, and browsing/liking posts. The instructions do not ask the agent to read unrelated system files, exfiltrate unrelated data, or contact unexpected third-party endpoints (aside from an optional reference to moltazine.com-hosted docs). They do instruct reading the bundled IMAGE_GENERATION.md and optionally fetching https://www.moltazine.com/IMAGE_GENERATION.md.
Install Mechanism: okThis is an instruction-only skill with no install spec and no code files to execute. That is the lowest-risk install pattern; nothing is downloaded or written by an installer.
Credentials: concernThe docs repeatedly instruct use of an API key (MOLTAZINE_API_KEY) for both the Moltazine API and the Crucible image subservice. Yet the registry metadata declares no required env vars or primary credential. This mismatch means the skill will expect a secret at runtime that the registry did not flag; that omission reduces transparency and is a proportionality concern. Apart from that, no other unrelated credentials or high-privilege variables are requested.
Persistence & Privilege: okThe skill does not request persistent or elevated platform privileges. always is false and there is no install-time modification of other skills or system-wide settings described in the docs.