Skillv1.0.0

ClawScan security

timeplus-app-builder · ClawHub's context-aware review of the artifact, metadata, and declared behavior.

Scanner verdict

BenignMar 4, 2026, 4:07 PM

Verdict: benign
Confidence: high
Model: gpt-5-mini
Summary: The skill's requirements and runtime instructions are coherent with its stated purpose (building single-file Timeplus frontend apps that connect to a local Proton proxy); nothing requested is disproportionate to that goal.
Guidance: This skill appears internally consistent for building single-file Timeplus frontends. Before using/installing: (1) be aware the produced HTML will load third-party scripts from unpkg.com at runtime — those remote scripts run in your browser and should be trusted (verify package names/versions). (2) The app connects to a Proton proxy at localhost:8001 — ensure that host/port in your environment is the intended Timeplus agent proxy and does not expose sensitive data. (3) No credentials are requested by the skill, but if your Proton deployment requires authentication you should avoid embedding secrets in the HTML; instead use a secure proxy or server-side component.

Review Dimensions

Purpose & Capability: okName/description (build Timeplus frontend apps) match the instructions: generate a single self-contained HTML that loads @timeplus/proton-javascript-driver and @timeplus/vistral from CDN and connects to Proton via localhost:8001. No unrelated binaries, env vars, or other services are requested.
Instruction Scope: okSKILL.md stays on-topic: it instructs how to build the HTML, how to load UMD libs, and how to query Proton via the driver. It explicitly targets localhost:8001 (the agent proxy) — which is consistent with a frontend that talks to a local proxy. The instructions do not request reading local files, environment variables, or sending collected data to unexpected external endpoints in the skill text.
Install Mechanism: noteNo install spec (instruction-only) — low disk footprint. The generated HTML relies on loading multiple third-party UMD packages at runtime from unpkg.com. This is expected for a no-build single-file app but means the rendered app will execute remote CDN code in the user's browser when opened.
Credentials: okThe skill requests no environment variables or credentials. Its only external interaction is to the Proton proxy on localhost:8001, which is appropriate for the stated goal of querying Timeplus Proton.
Persistence & Privilege: okThe skill is instruction-only, not always-on, does not request persistent system changes, and does not modify other skills or global agent settings. Autonomous invocation being allowed is the platform default and not a concern by itself.