Skillv0.1.0

ClawScan security

Deep Research · ClawHub's context-aware review of the artifact, metadata, and declared behavior.

BenignFeb 28, 2026, 3:08 AM

Verdict: benign
Confidence: high
Model: gpt-5-mini
Summary: The skill's instructions, requested capabilities, and file/network usage are coherent with a multi-agent deep research orchestration workflow; nothing requested is disproportionate to its stated purpose.
Guidance: This skill is internally consistent with a multi-agent deep-research workflow, but before installing/using it you should: 1) Expect it to create a persistent .research/<name>/ directory with raw data, logs, and final reports — review and clean those files as needed. 2) Be aware it will spawn multiple child processes (claude -p) and perform many network fetches (via installed skills or MCP tools), which can consume quota, bandwidth, and compute time. 3) Confirm which skills/MCP plugins (firecrawl, exa) are available in your environment — if unavailable the skill will fallback to other web fetch methods. 4) Verify privacy/compliance requirements for scraping external sites and storing scraped content. 5) When prompted for confirmation the skill should wait before executing; review generated prompts and the scheduling script (run_children.sh) before you allow runs. If you want stronger safeguards, require the skill to run in an isolated workspace, limit concurrency/timeouts, or have it produce a dry-run plan that you review prior to execution.

Purpose & Capability: okName/description (multi-agent deep research) match the SKILL.md: it requires spawning child Claude Code processes, using web/MCP scraping tools, producing on-disk report artifacts and logs. There are no unrelated environment variables, binaries, or install steps requested.
Instruction Scope: noteThe instructions explicitly direct filesystem writes (creating .research/<name>/ and subdirs), spawning child processes (claude -p), running shell scripts, and performing web fetch/search/scrape via skills or MCP tools. This behavior matches a distributed research workflow, but it grants broad discretion to run networked fetches and many local file operations — users should expect data collection, persistent files, and spawned processes.
Install Mechanism: okInstruction-only skill with no install spec or downloaded code. No archives or external installers are referenced, so there is no install-time execution risk.
Credentials: okNo environment variables, secrets, or external credentials are requested. The skill relies on preinstalled skills/MCP plugins (firecrawl, exa) and local shell tools, which is proportionate to a web-scraping/multi-agent orchestration task.
Persistence & Privilege: okThe skill does not request always:true and does not attempt to change other skills' configs. It requires writing its own project directory and logs, which is appropriate for its stated purpose.