Back to skill
Skillv1.0.0
ClawScan security
Find trending skills · ClawHub's context-aware review of the artifact, metadata, and declared behavior.
Scanner verdict
BenignMar 9, 2026, 9:12 PM
- Verdict
- benign
- Confidence
- high
- Model
- gpt-5-mini
- Summary
- The skill's code, runtime instructions, and requested resources are consistent with a ClawHub trend-monitoring utility — it only needs Node, stores local state, and fetches data from the ClawHub API.
- Guidance
- This skill appears to be what it says: a local Node CLI that polls the ClawHub API and stores state in ~/.skill-surge-notifier. Before installing, consider: (1) it will perform network requests to https://clawhub.ai — ensure you are comfortable with that outbound access; (2) the profile you save (agent description & keywords) is stored locally and may contain sensitive info, so avoid writing secrets there; (3) if you schedule it (cron), logs and state will be written to your home directory—adjust SURGE_DIR if you prefer a different location or a sandboxed environment. If any of those are concerns, run the tool manually or inspect/run it in a restricted environment first.
Review Dimensions
- Purpose & Capability
- okName/description match the code: the bundle fetches /api/v1/skills from https://clawhub.ai, computes growth, scores relevance, and writes local state. Required binary (node) and optional env vars align with that purpose.
- Instruction Scope
- okSKILL.md instructs running the included CLI commands, saving state under ~/.skill-surge-notifier, and optionally scheduling via cron. The code follows those instructions and only reads/writes files in that directory and uses environment variables declared in the docs. There are no instructions to read unrelated system files or to transmit data to endpoints other than the ClawHub API.
- Install Mechanism
- okThis is instruction-only (no remote install or downloads). The code is bundled with the skill and runs via the local Node runtime; there are no remote installers or archive extraction steps.
- Credentials
- okNo required secrets or credentials. Optional env vars (SURGE_DIR, STATE_PATH, CONFIG_PATH, SCHEDULED) are documented and used for local path/config control; no unrelated credentials are requested.
- Persistence & Privilege
- okThe skill does not request always:true or modify other skills. It stores its own state/config under a user-scoped directory. The agent-autonomy default is allowed but not excessive for this monitoring utility.