Back to skill
Skillv1.1.0
ClawScan security
Meta Ads Lead Gen Analysis · ClawHub's context-aware review of the artifact, metadata, and declared behavior.
Scanner verdict
BenignApr 16, 2026, 2:36 AM
- Verdict
- benign
- Confidence
- high
- Model
- gpt-5-mini
- Summary
- The skill's stated purpose (Meta lead-gen campaign analysis) matches its requirements and instructions: it only needs a Meta API access token and ad account ID to fetch metrics and writes a small set of non-credential session keys for downstream recommendation — no install or unrelated privileges are requested.
- Guidance
- This skill appears internally consistent and low-risk: it needs a Meta API token and an ad account ID to pull lead-gen metrics and it stores a few non-credential diagnostic keys in session context for downstream recommendations. Before installing: (1) confirm the publisher (didoo.ai) and you trust it to analyze your ad data; (2) provide a least-privilege token (ads_read only) and prefer short-lived tokens or a dedicated read-only account; (3) verify how session context is stored and who/what can read those keys (to avoid leaking business data to other skills); and (4) avoid giving long-lived admin tokens or other unrelated credentials. If you want higher assurance, ask the publisher for a manifest that includes a primaryEnv declaration and explicit list of Graph API endpoints used.
Review Dimensions
- Purpose & Capability
- okName/description ask for lead-gen diagnosis and the SKILL.md requires META_ACCESS_TOKEN and META_AD_ACCOUNT_ID to query the Meta Graph API for ad/campaign/form metrics — these credentials are appropriate and proportionate for the described task.
- Instruction Scope
- okRuntime instructions focus on collecting campaign/adset metrics, verifying CAPI, asking the user clarifying questions, and writing a small set of diagnostic keys to session context. The instructions do not direct the agent to read unrelated system files, other environment variables, or exfiltrate data to unexpected endpoints.
- Install Mechanism
- okThis is an instruction-only skill with no install spec and no code files, so nothing will be downloaded or written to disk during installation — low install risk.
- Credentials
- noteThe skill only requires META_ACCESS_TOKEN and META_AD_ACCOUNT_ID which are appropriate. Minor note: no primaryEnv is declared even though an access token is required; also confirm the token uses the least-privilege scope (ads_read as documented) and avoid providing long-lived or admin-scoped tokens.
- Persistence & Privilege
- notealways:false (normal). The skill writes a small set of session context keys (lp_diagnosis, capi_status, etc.) intended for meta-ads-recommendation. This is reasonable, but verify that session context storage is scoped and not persisted beyond intended session lifetime, and that other unrelated skills won't inadvertently read those diagnostic keys if that would leak business-sensitive details.