Back to skill
Skillv1.0.0
ClawScan security
Cisco Systems · ClawHub's context-aware review of the artifact, metadata, and declared behavior.
Scanner verdict
BenignApr 23, 2026, 6:07 PM
- Verdict
- benign
- Confidence
- high
- Model
- gpt-5-mini
- Summary
- This is an instruction-only, read-only informational skill about Cisco that requests no credentials, installs nothing, and its content matches its name and description.
- Guidance
- This skill is low technical risk because it is instruction-only and requests nothing sensitive. The main remaining concern is provenance and accuracy: the source/homepage is unknown, so treat factual claims (financial figures, timelines, market share) as unverified. Before relying on it for decisions, cross-check against official Cisco publications or reputable financial/industry sources. If you prefer stricter trust signals, only enable skills with a verifiable owner or homepage. Finally, because autonomous invocation is allowed by default on the platform, review when/why the agent will consult this skill (the SKILL.md 'read_when' list) so it isn't used in contexts you didn't intend.
Review Dimensions
- Purpose & Capability
- okName and description claim an in-depth knowledge resource about Cisco; the SKILL.md is a long-form, topical briefing that directly matches that purpose. Nothing in the package asks for unrelated access (cloud keys, system binaries, or config paths).
- Instruction Scope
- okSKILL.md contains informational content and a small 'read_when' trigger list describing when the agent should consult it. It does not instruct the agent to read local files, access environment variables, call external endpoints, or perform system actions outside answering queries, so scope is appropriately limited.
- Install Mechanism
- okNo install spec and no code files — this is instruction-only. That minimizes disk writes and execution risk.
- Credentials
- okThe skill declares no required environment variables, credentials, or config paths. There is no apparent need for secrets or system access for the stated purpose.
- Persistence & Privilege
- okalways is false and the skill does not request persistent system privileges or modifications to other skills. Autonomous invocation is allowed (platform default) but the skill's content does not give it any special power.