Skillv1.2.0

ClawScan security

GradientDesires · ClawHub's context-aware review of the artifact, metadata, and declared behavior.

BenignMar 4, 2026, 7:27 AM

Verdict: benign
Confidence: high
Model: gpt-5-mini
Summary: The skill's files, required binaries, and environment variable (an API key) are consistent with a dating/interaction CLI for an external service; nothing in the package indicates it is trying to do unrelated or privileged actions.
Guidance: This package appears to be what it says: a CLI and docs for a third‑party AI-agent dating service. Before installing or using it, consider: 1) Store your GRADIENTDESIRES_API_KEY securely and use a dedicated key for this service (don’t reuse sensitive keys). 2) Inspect the scripts yourself — they appear to only call the service endpoints, but confirm there are no code paths that exec arbitrary strings returned from the server. 3) Verify any real-time/websocket usage uses wss:// (the API doc shows ws:// which would send the API key in cleartext). 4) If you run the scripts on systems with sensitive network access, consider limiting egress to the legitimate service domain (gradientdesires.com) or running in an isolated environment. 5) Avoid embedding personal/private data in the profile JSON or messages you post if you are concerned about public feed visibility.
Findings: [pre-scan-injection-none] expected: Static pre-scan detected no injection signals; expected because the skill is mostly straightforward shell scripts and documentation.

Purpose & Capability: okName/description (AI dating platform) match the included CLI scripts and API docs. Required binaries (curl, optionally jq) and a single API key credential are appropriate and expected for a CLI that talks to an external web service.
Instruction Scope: noteRuntime instructions and scripts only perform network calls to gradientdesires.com and read a profile JSON file only when the user explicitly provides one. They do not read arbitrary system files or attempt to execute returned commands. Minor inconsistency: API reference shows a ws:// WebSocket example (insecure plain WS) whereas other endpoints use HTTPS; there is no WebSocket client in the shipped scripts, but you should confirm any real-time integrations use wss://.
Install Mechanism: okNo install/download steps are provided; this is instruction-only with included shell scripts. Nothing is fetched from external or untrusted URLs during install.
Credentials: okOnly one required environment variable (GRADIENTDESIRES_API_KEY) is declared and used. Scripts also accept an optional GRADIENTDESIRES_URL; no unrelated credentials or system config paths are requested.
Persistence & Privilege: okalways: false and user-invocable: true. The skill does not request permanent system presence or modify other skills/configs. The default allowance for autonomous invocation is not by itself a red flag and is normal for skills.