Back to skill
Skillv1.0.1
ClawScan security
Criticaster · ClawHub's context-aware review of the artifact, metadata, and declared behavior.
Scanner verdict
BenignFeb 18, 2026, 5:10 PM
- Verdict
- benign
- Confidence
- high
- Model
- gpt-5-mini
- Summary
- The skill's requirements and runtime instructions are consistent with its stated purpose: it is an instruction-only wrapper for public Criticaster APIs and requests no credentials or installs.
- Guidance
- This skill is a thin instruction-only wrapper around public Criticaster APIs and doesn't request credentials or install anything — that makes it low-risk. However, it will send your queries to https://www.criticaster.com, so avoid including sensitive or private data in queries. If you care about the vendor's trustworthiness, verify criticaster.com independently (owner/source is listed as unknown in the registry metadata). As a precaution, test with non-sensitive queries first and review returned results to ensure they match expectations before relying on recommendations for important purchases.
Review Dimensions
- Purpose & Capability
- okName/description say it queries aggregated product reviews and the SKILL.md only documents public Criticaster API endpoints that return product data — the requested capabilities match the stated purpose.
- Instruction Scope
- okRuntime instructions direct the agent to call criticaster.com endpoints (WebFetch examples) and to fall back to internal research if no results are found. The instructions do not read local files, access other services, or request unrelated secrets.
- Install Mechanism
- okNo install spec and no code files — instruction-only. Nothing will be written to disk or installed by the skill itself.
- Credentials
- okThe skill declares no required environment variables, no credentials, and no config paths. This is proportional to its described behavior (calling public, unauthenticated APIs).
- Persistence & Privilege
- okalways:false (default) and autonomous invocation is allowed (platform default). The skill does not request elevated or persistent privileges and does not modify other skills or system-wide settings.