Back to skill
Skillv1.0.0
ClawScan security
Cn Cron Parser · ClawHub's context-aware review of the artifact, metadata, and declared behavior.
Scanner verdict
BenignApr 30, 2026, 1:15 AM
- Verdict
- benign
- Confidence
- high
- Model
- gpt-5-mini
- Summary
- The skill is coherent with its stated purpose — a local cron-expression parser implemented in Python, with no unexplained permissions, network calls, or credential access.
- Guidance
- This skill appears to be what it says: a local Python tool to parse cron expressions. It requires Python 3 and (optionally) the croniter package to compute next-run times. There are no network calls, credential requests, or file-system operations beyond printing results. As with any third-party script, if you plan to run it, inspect the code (already done here) and run it in a controlled environment or sandbox if you have concerns. Note: the script has minor parsing edge cases (string/int handling for month/weekday) but those are functional bugs rather than security issues.
Review Dimensions
- Purpose & Capability
- okName/description (Cron Parser) matches the included script and SKILL.md. The files implement parsing, human-readable description, templates, and next-run calculation; none of the declared or required resources are out of scope for this purpose.
- Instruction Scope
- okSKILL.md instructs running the included Python script and documents the optional dependency (croniter). The runtime instructions do not request reading system files, environment variables, or sending data to external endpoints. All actions stay within the stated purpose.
- Install Mechanism
- okThere is no install spec (instruction-only). The only external dependency is the well-known Python package 'croniter' which is documented in SKILL.md; nothing is downloaded or executed from an untrusted URL.
- Credentials
- okThe skill requests no environment variables, credentials, or config paths. The code does not access environment variables or external secrets.
- Persistence & Privilege
- okThe skill does not request persistent/always-on presence (always: false) and does not modify other skills or system-wide configurations. Autonomous invocation is allowed by platform default but is not combined with broad privileges here.