Back to skill
Skillv0.1.0
ClawScan security
Hot3d · ClawHub's context-aware review of the artifact, metadata, and declared behavior.
Scanner verdict
BenignMar 14, 2026, 2:37 PM
- Verdict
- Benign
- Confidence
- high
- Model
- gpt-5-mini
- Summary
- The skill is an instruction-only wrapper around the public HOT3D research repo and its instructions are consistent with that purpose; there are no disproportionate permissions, installs, or secret requests.
- Guidance
- This skill is essentially documentation pointing you to the HOT3D GitHub project; it appears coherent and not covertly requesting secrets. Before you follow the SKILL.md steps: (1) verify the GitHub repo URL (https://github.com/facebookresearch/hot3d) and review the repository contents yourself; (2) run pip installs in a virtual environment and inspect requirements.txt to avoid installing surprising packages; (3) be aware the dataset is large and requires registration — check license terms (CC-BY-NC 4.0) to ensure your use is permitted; (4) running demos will process video data, so consider privacy and secure storage for recordings; and (5) if you need Aria/Quest integration or device SDKs, obtain official SDKs from vendors and follow secure device pairing procedures.
Review Dimensions
- Purpose & Capability
- okThe name, description, and SKILL.md all describe the HOT3D multi-view 3D hand/object tracking project and point to the upstream GitHub/project pages; requested actions (git clone, pip install, download dataset) match the stated purpose.
- Instruction Scope
- okRuntime instructions are limited to cloning the repository, installing Python dependencies, downloading the dataset (which requires registration), and running demos. The instructions do not ask the agent to read unrelated system files, exfiltrate data, or access unrelated environment variables.
- Install Mechanism
- okThis is instruction-only (no install spec). The SKILL.md recommends pip installing requirements from the cloned repo, which is normal for a research project; nothing in the skill itself performs arbitrary downloads or writes to disk beyond what a user would do following the repo README.
- Credentials
- okThe skill declares no required environment variables or credentials. The only external accesses implied are cloning from GitHub and registering/downloading the dataset from the project site — both expected and proportionate to the purpose.
- Persistence & Privilege
- okalways is false and the skill does not request persistent/system-wide privileges or attempt to modify other skills or agent configuration. It runs only when invoked.