Back to skill
Skillv1.0.0
ClawScan security
短链接生成器 · ClawHub's context-aware review of the artifact, metadata, and declared behavior.
Scanner verdict
SuspiciousApr 29, 2026, 4:28 PM
- Verdict
- suspicious
- Confidence
- high
- Model
- gpt-5-mini
- Summary
- The skill claims many features and 'no external dependencies', but the included script only does a single is.gd shorten call, actually imports the third-party 'requests' package, and does not implement the advertised features (batch, stats, expiry, CLI flags).
- Guidance
- This skill appears to be a small URL-shortening tool, but the documentation and code disagree. Before installing or running it: (1) be aware the script sends the long URL to the public is.gd service—do not shorten sensitive or private links; (2) the code uses the third-party Python package 'requests' even though the SKILL.md says 'no external dependencies'—install 'requests' (pip install requests) or fix the docs; (3) the SKILL.md promises features (batch mode, stats, expiry, CLI flags) that the script does not implement—ask the author for a corrected SKILL.md or a real implementation if you need those features; (4) run the script in a sandboxed environment first to observe its behavior. These inconsistencies look like sloppy packaging rather than malicious intent, but confirm the missing dependency and feature mismatches before trusting the skill with real data.
Review Dimensions
- Purpose & Capability
- concernName and high-level purpose (URL shortener) align with the code's network call to is.gd, but the SKILL.md advertises multiple features (click statistics, expiry, batch generation, CLI flags like --alias or 'stats') that are not implemented in scripts/url_shortener.py. The skill does not declare the actual dependency it requires (requests).
- Instruction Scope
- concernSKILL.md gives usage examples for custom aliases, stats queries, and batch processing, but the script only reads a single argv[1] and calls the is.gd API. The docs also state 'no external dependencies' while the runtime imports 'requests'. The instructions therefore overclaim capabilities and omit required setup, which could mislead users or cause runtime errors.
- Install Mechanism
- concernThere is no install spec (instruction-only), which is low risk in principle, but the code imports the non-standard library 'requests' without declaring it. That omission is an operational/integrity issue: the skill will fail unless 'requests' is present or an install step is added. No downloads or hidden endpoints are present aside from the public is.gd API.
- Credentials
- okThe skill requests no environment variables, credentials, or config paths. Its network call is limited to the public is.gd service, which is proportionate for a URL-shortening tool. Note: shortening a URL will transmit the long URL to is.gd (third party).
- Persistence & Privilege
- okThe skill does not request persistent/always-on inclusion and does not modify other skills or system configuration. It only runs as an invoked script and has no special privileges.