Skillv1.0.0

ClawScan security

weather-skill-hangs-001 · ClawHub's context-aware review of the artifact, metadata, and declared behavior.

BenignApr 21, 2026, 5:34 AM

Verdict: benign
Confidence: high
Model: gpt-5-mini
Summary: The skill is an instruction-only, mock weather responder whose declared behavior matches its instructions; it requests no credentials, has no install steps, and the included code/resource files are empty.
Guidance: This skill is internally coherent and low-risk in its current form: it returns simulated weather, asks for no secrets, and has no install steps. Note that several files in the package are present but empty — benign for now, but you should re-review the skill if a future version adds non-empty scripts or integrates real weather APIs (those would require API keys and network calls). If you plan to use real-time data later, confirm exactly which endpoints and environment variables will be required before installing or granting credentials.

Purpose & Capability: okName, description, and SKILL.md all state the skill returns simulated weather for major cities. There are no declared dependencies, credentials, or binaries that would be unexpected for a mock/weather helper.
Instruction Scope: okSKILL.md describes accepting a city and returning simulated weather. It does not instruct reading system files, accessing environment variables, or calling external endpoints. The doc notes future plans to integrate real APIs, but current instructions remain scoped to simulated output.
Install Mechanism: okNo install spec is provided (instruction-only), so nothing is written to disk or downloaded at install time. Two script and two resource files are present in the manifest but are zero bytes — odd but not harmful in itself.
Credentials: okNo environment variables, credentials, or config paths are required. This is proportionate for a mock weather skill. If future versions integrate real APIs, API keys would be expected then.
Persistence & Privilege: okThe skill does not request always:true and uses default invocation settings. It does not request elevated or persistent system privileges.