Back to skill
Skillv2026.4.7
ClawScan security
OpenClaw Zulip Channel · ClawHub's context-aware review of the artifact, metadata, and declared behavior.
Scanner verdict
BenignApr 7, 2026, 11:46 PM
- Verdict
- benign
- Confidence
- high
- Model
- gpt-5-mini
- Summary
- The skill is an instruction-only wrapper that tells the agent how to install and configure an OpenClaw Zulip channel plugin and does not request unrelated credentials, files, or install arbitrary code itself.
- Guidance
- This skill is a safe, instruction-only helper for installing/configuring the OpenClaw Zulip plugin, but you should still: (1) confirm the npm package (openclaw-channel-zulip) is published by a trusted publisher on the npm registry before running the install, (2) review the plugin's package source or repository if possible, (3) avoid pasting Zulip API keys into chat and store them in OpenClaw's secure config or environment variables as suggested, and (4) run the install commands locally in a controlled environment (or sandbox) if you need to audit effects before deploying to production.
Review Dimensions
- Purpose & Capability
- okName/description match the instructions: guidance is limited to installing the openclaw-channel-zulip npm plugin, wiring channels.zulip config, restarting the gateway, and verifying health. Nothing requested or described is unrelated to adding Zulip support.
- Instruction Scope
- okSKILL.md only instructs running OpenClaw CLI commands, editing OpenClaw config paths (plugins.load.paths and channels.zulip), and performing a smoke test. It asks for Zulip bot credentials only as required configuration for the plugin and cautions to store secrets in the OpenClaw config or env vars, not chat.
- Install Mechanism
- okThere is no install spec and no code shipped with the skill (instruction-only). The actual plugin install is delegated to the local OpenClaw CLI (openclaw plugins install), so the skill itself does not download or write code.
- Credentials
- okThe skill declares no required environment variables, credentials, or config paths. The only secrets referenced are the Zulip bot email and API key, which are appropriate and expected for configuring a Zulip channel plugin.
- Persistence & Privilege
- okalways is false and the skill does not request persistent system-wide changes beyond instructing the user to edit OpenClaw's own config and restart the gateway. It does not modify other skills or request elevated privileges.