ClawHub
Back to skill
v1.0.1

CitrineOS Assistant

ReviewClawScan verdict for this skill. Analyzed May 1, 2026, 5:52 AM.

Analysis

The skill is mostly coherent for CitrineOS administration, but it gives the agent direct installation and operational-control instructions, including starting transactions or resetting charging stations, without explicit confirmation safeguards.

GuidanceInstall only if you are comfortable letting the agent guide Docker/CitrineOS setup and call CitrineOS APIs. Before any command that changes infrastructure, especially starting a transaction or resetting a charging station, require the agent to show the exact target, request, and expected effect and wait for your explicit approval.

Findings (2)

Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.

Abnormal behavior control

Checks for instructions or behavior that redirect the agent, misuse tools, execute unexpected code, cascade across systems, exploit user trust, or continue outside the intended task.

Tool Misuse and Exploitation
SeverityHighConfidenceMediumStatusConcern
SKILL.md
Use `http` tool to call these when user asks for status, stations, transactions, etc. ... `Start transaction` → POST Message API `RequestStartTransaction` ... `Reset station` → POST Message API `Reset`

The skill instructs the agent to use HTTP calls for operational EV charging actions, including starting transactions and resetting stations, without an explicit confirmation or scoping requirement before making changes.

User impactIf used on a real CitrineOS deployment, the agent could send commands that affect charging-station behavior or active operations.
RecommendationRequire explicit user confirmation for every mutating API call, verify the target server and station ID, show the exact request to be sent, and prefer read-only status checks by default.
Unexpected Code Execution
SeverityLowConfidenceHighStatusNote
SKILL.md
Clone: `git clone https://github.com/citrineos/citrineos-core` ... `npm run install-all && npm run build` ... `docker-compose -f docker-compose.yml up -d`

The skill guides the agent through local build and Docker startup commands. This is expected for a CitrineOS installation assistant, but it still runs project scripts and starts containers on the user's system.

User impactThe installation flow can change the local environment, install dependencies, and run long-lived services.
RecommendationReview the repository and Docker Compose configuration before running build/start commands, and run them only in a directory and environment the user approves.