ClawHub
Back to skill
v2.0.3

index1 Doctor

BenignClawScan verdict for this skill. Analyzed May 1, 2026, 5:47 AM.

Analysis

This appears to be a straightforward diagnostic helper for index1, with only user-visible local command execution and optional setup/indexing recommendations to review.

GuidanceThis skill is reasonable for diagnosing index1. Before installing or invoking it, be comfortable with the agent running the listed local status commands. Treat the Ollama install command and the indexing command as manual actions to review, not commands to run blindly.

Findings (3)

Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.

Abnormal behavior control

Checks for instructions or behavior that redirect the agent, misuse tools, execute unexpected code, cascade across systems, exploit user trust, or continue outside the intended task.

Tool Misuse and Exploitation
SeverityInfoConfidenceHighStatusNote
SKILL.md
The skill runs three commands sequentially and analyzes results: ... `index1 doctor` ... `index1 status` ... `ollama list`

The skill explicitly directs local command execution, but the commands are narrow diagnostic/status checks that match the stated index1 doctor purpose.

User impactThe agent may inspect local tool versions, index metadata, and installed Ollama models during diagnosis.
RecommendationUse the skill when you want these diagnostics run, and review command output before sharing it externally.
Unexpected Code Execution
SeverityLowConfidenceHighStatusNote
SKILL.md
`curl -fsSL https://ollama.com/install.sh \| sh`

A troubleshooting table recommends piping a remote install script to a shell as a manual fix for Ollama connectivity; it is not shown as automatic skill execution, but it is a higher-impact setup action.

User impactIf followed, this command would download and execute an installer on the local machine.
RecommendationRun installer commands manually only after verifying the source and understanding the system changes.
Sensitive data protection

Checks for exposed credentials, poisoned memory or context, unclear communication boundaries, or sensitive data that could leave the user's control.

Memory and Context Poisoning
SeverityLowConfidenceHighStatusNote
SKILL.md
| Index | Has documents | `index1 index ./src ./docs` |

The suggested fix can add local source and documentation directories to an index, creating persistent searchable context; the paths are scoped and user-directed.

User impactIndexing local folders may persist project content in the index for future search or retrieval.
RecommendationOnly index directories you intend to make searchable, and exclude private or sensitive files if needed.