Uuid Generator Tool
PassAudited by ClawScan on May 13, 2026.
Overview
This appears to be a simple local UUID utility with no network, install, or credential use, with only a privacy caveat for UUID v1 outputs.
This looks safe for normal local UUID generation. Prefer UUID v4 for public or privacy-sensitive identifiers because UUID v1 can include a machine identifier and timestamp, and do not provide credentials for this tool.
Findings (2)
Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.
If a user shares UUID v1 values publicly, they may disclose a machine identifier and generation time.
UUID v1 generation can embed a timestamp and node identifier such as a MAC address; this is inherent to UUID v1 and is also disclosed in the skill documentation.
def generate_uuid_v1():
"""Generate UUID v1 (time-based)"""
return str(uuid.uuid1())Use UUID v4 for general-purpose or privacy-sensitive identifiers unless UUID v1 is specifically needed.
A user could be confused if prompted for credentials, but the provided artifacts do not show any reason this tool needs them.
A supplied capability signal mentions sensitive credentials, but the declared requirements and reviewed code do not show any credential need or handling.
Capability signals: - requires-sensitive-credentials; Required env vars: none; Primary credential: none
Do not provide API keys or credentials for this skill unless the publisher updates the artifacts to clearly justify and scope that need.