Skillv1.0.0

ClawScan security

中文快递追踪 · ClawHub's context-aware review of the artifact, metadata, and declared behavior.

BenignApr 17, 2026, 4:23 PM

Verdict: benign
Confidence: high
Model: gpt-5-mini
Summary: The skill is internally consistent with its stated purpose (local package tracking using kuaidi100), requests no secrets, and only performs expected network queries and local JSON storage.
Guidance: This skill appears to do what it says: it extracts tracking numbers, queries kuaidi100, and stores results locally. Before installing, note: (1) it makes outbound HTTPS requests to https://www.kuaidi100.com — ensure you trust that service and that your environment allows network access; (2) it writes a JSON file under ~/.qclaw/skills/cn-express-tracker/data/express.json (review or back up if you care about local state); (3) the script requires the Python requests library but the skill does not declare an installer — install requests in your environment to avoid runtime errors; (4) the SKILL.md mentions an SSL fallback, but the code does not disable verification on retry (this is a benign implementation inconsistency). If you are comfortable with those points, the skill is coherent and does not request extra privileges or secrets.

Purpose & Capability: okName/description match the included Python script and SKILL.md: the code extracts tracking numbers, detects carriers, queries kuaidi100, and stores tracking entries locally. No unrelated credentials, binaries, or services are requested.
Instruction Scope: noteInstructions and code stay within the declared purpose: they read/write a local JSON at ~/.qclaw/skills/cn-express-tracker/data/express.json and call the kuaidi100 query endpoint. Minor mismatch: SKILL.md describes an SSL 'downgrade' fallback for old environments, but the code's fallback still uses verify=True (so the described behavior is inaccurate). There are no instructions to read other user files or transmit unrelated data.
Install Mechanism: noteThis is an instruction-only skill with an included Python script (no install spec). The script uses the third-party requests library but the skill does not declare or install that dependency; runtime failure is possible if requests is absent. No risky downloads or external install URLs are present.
Credentials: okThe skill requests no environment variables, credentials, or config paths beyond writing to its own data directory in the user's home. That storage location is proportional to its function.
Persistence & Privilege: okalways:false and user-invocable:true. The skill persists only its own tracking JSON under ~/.qclaw/skills/cn-express-tracker/data; it does not modify other skills or system-wide settings.