Skillv1.0.0

ClawScan security

小说风格续写 · ClawHub's context-aware review of the artifact, metadata, and declared behavior.

BenignApr 21, 2026, 6:06 AM

Verdict: benign
Confidence: high
Model: gpt-5-mini
Summary: The skill's declared purpose (continuing a novel in the same style) matches its instructions and included reference files; it asks for no credentials or installs and confines actions to reading the supplied text and updating local reference files.
Guidance: This skill appears coherent: it will read the novel text you provide, extract style and plot-state details, generate continuation text, and store/update two local reference files (references/style.md and references/plot_state.md) for reuse. Before installing or using it, consider: (1) privacy — the skill will persist parts of the text you supply in its reference files, so avoid providing sensitive or private material if you don't want it stored; (2) copyright — if you paste large amounts of copyrighted novels, those excerpts may be kept in the skill's references; (3) content — the included style notes explicitly permit strong language, violence, and adult themes, so expect the generated output to follow that; (4) if you prefer no persistent storage, tell the agent not to update references or remove/clear those files after use. There are no technical red flags (no external endpoints, no credential requests, no installers).

Purpose & Capability: okName, description, and runtime instructions all describe the same task (extract style/plot state and continue the novel). No unrelated binaries, env vars, or external services are requested.
Instruction Scope: okSKILL.md instructs the agent to read the user-provided novel text, extract style features, consult and update the two local reference files, and produce continuation output. These actions are consistent with the stated purpose. There are no instructions to read unrelated system files, call external endpoints, or exfiltrate data.
Install Mechanism: okInstruction-only skill with no install spec and no included executable code — nothing is downloaded or written by an installer beyond the agent-managed reference files described in SKILL.md.
Credentials: okThe skill requests no environment variables, credentials, or config paths. Its need to read and persist the provided text into references/style.md and references/plot_state.md is proportional to its stated function, but note this implies storing user-provided content locally.
Persistence & Privilege: okalways:false and no elevated privileges. The skill instructs the agent to create/update its own reference files (normal for a writing assistant). This is a bounded, skill-local persistence behavior.