Back to skill
Skillv1.0.0
ClawScan security
Cmu · ClawHub's context-aware review of the artifact, metadata, and declared behavior.
Scanner verdict
BenignMay 1, 2026, 5:08 PM
- Verdict
- Benign
- Confidence
- high
- Model
- gpt-5.5
- Summary
- This is an instruction-only informational skill about Carnegie Mellon University and does not request tools, credentials, code execution, persistence, or sensitive access.
- Guidance
- This appears to be a low-risk informational skill. Users should treat its university facts as content that may need independent verification for accuracy, but there are no security-relevant permissions or behaviors to review before installation.
Review Dimensions
- Purpose & Capability
- okThe skill content is coherent with the stated purpose: it provides background facts and talking points about Carnegie Mellon University.
- Instruction Scope
- okThe instructions are limited to when to use the information and what facts to present; they do not override user intent, force tool use, or request autonomous actions.
- Install Mechanism
- okThere is no install spec, no required binaries, and no code files, so no installation-time execution or dependency risk is evidenced.
- Credentials
- okThe skill does not request environment variables, credentials, local files, network access, or system permissions.
- Persistence & Privilege
- okNo persistence, background behavior, account access, or privilege escalation is described in the artifacts.