Skillv1.0.0

ClawScan security

Cn Base64 Tools · ClawHub's context-aware review of the artifact, metadata, and declared behavior.

SuspiciousApr 30, 2026, 5:18 AM

Verdict: suspicious
Confidence: high
Model: gpt-5-mini
Summary: The skill is a simple Base64 encode/decode tool and contains no network or credential access, but its documentation claims features (URL-safe mode and auto-detection) that the included script does not implement — an incoherence you should resolve before trusting it.
Guidance: This skill's code is small and local with no network or credential access, but its documentation claims features (URL-safe mode, auto-detection, 'encode-url') that the included script doesn't implement. Before installing or using it in automation: (1) review/approve the script yourself — it's short and readable; (2) if you need URL-safe encoding or auto-detection, either modify the script to add those functions (use base64.urlsafe_b64encode / urlsafe_b64decode and validation logic) or request the publisher to fix SKILL.md; (3) test the encode/decode commands locally to confirm behavior (note: decode returns null/None on failure); and (4) avoid granting any credentials or external access since they are unnecessary. The mismatch is likely sloppy documentation rather than malicious, but fix or clarify it before relying on the skill in automation.

Purpose & Capability: noteThe declared purpose (Base64 encode/decode) matches the included script: scripts/base64_tools.py implements basic encode and decode. However, the SKILL.md advertises additional features (URL-safe Base64, automatic detection, commands like 'encode-url') that are not implemented in the script. This is an inconsistency between claimed capabilities and actual code.
Instruction Scope: concernRuntime instructions tell the agent to call python3 scripts/base64_tools.py '<操作> <内容>' which matches the script interface for 'encode' and 'decode'. But SKILL.md and examples also instruct 'encode-url' and reference automatic detection; the script accepts only 'encode' and 'decode' and has no URL-safe or detection logic. The SKILL.md therefore overpromises and could cause runtime errors or unexpected behavior.
Install Mechanism: okNo install spec and no external downloads; the skill is instruction-only with a small bundled Python script using only the standard library. This is low-risk from an install perspective.
Credentials: okThe skill requires no environment variables, no credentials, and no config paths — appropriate and proportional for a local Base64 utility.
Persistence & Privilege: okalways is false and the skill does not request elevated or persistent system presence. It does not attempt to modify other skills or system configuration.