Back to skill
Skillv1.0.0
ClawScan security
Al Jazeera · ClawHub's context-aware review of the artifact, metadata, and declared behavior.
Scanner verdict
BenignApr 22, 2026, 1:03 PM
- Verdict
- benign
- Confidence
- high
- Model
- gpt-5-mini
- Summary
- This is an instruction-only, read-only informational skill about Al Jazeera with no installs, no credentials, and no commands — its declared purpose matches its content.
- Guidance
- This skill is a static informational document about Al Jazeera and poses minimal technical risk because it has no install steps, code, or credential requests. The one non-technical concern is provenance: the SKILL.md lists facts and figures but the source and homepage are unknown. If you rely on this for reporting or decision-making, verify key claims (dates, funding figures, audience metrics) against primary sources (Al Jazeera's site, reputable journalism histories). If you need up-to-date feeds or automated actions (e.g., fetching live articles), prefer a skill that declares a trusted API, and avoid giving any credentials unless they are clearly required and justified.
Review Dimensions
- Purpose & Capability
- okThe skill's name and description describe a news/network summary and the SKILL.md contains background, timeline, and analysis consistent with that purpose. There are no unrelated requirements (no env vars, binaries, or install steps) that would contradict the stated aim.
- Instruction Scope
- okSKILL.md is a static knowledge/informational document (history, business model, facts). It does not instruct the agent to read system files, call external endpoints, access credentials, or run shell commands — no scope creep detected.
- Install Mechanism
- okNo install specification and no code files. Being instruction-only means nothing is written to disk or fetched at install time, which is the lowest-risk installation model.
- Credentials
- okThe skill requests no environment variables, credentials, or config paths. There are no unexplained or disproportionate secret requirements.
- Persistence & Privilege
- okFlags show default behavior (always: false, user-invocable: true, model invocation allowed). The skill does not request persistent or elevated privileges and does not modify other skills or system-wide settings.