Skillv1.0.0

ClawScan security

Maxar · ClawHub's context-aware review of the artifact, metadata, and declared behavior.

BenignApr 26, 2026, 10:07 PM

Verdict: benign
Confidence: high
Model: gpt-5-mini
Summary: This is an informational, instruction-only skill about Maxar that asks for no installs, credentials, or special privileges and its content matches its stated purpose.
Guidance: This skill is a simple informational document about Maxar and appears coherent and low-risk: it requires no installs, credentials, or filesystem/network access. Before relying on it for operational decisions, verify factual claims (dates, satellite counts, contract details) against official or primary sources. If you need to fetch Maxar imagery or use their API, expect separate authorization, licensing, and a different integration that will require credentials and likely paid access — this skill does not provide that functionality.

Purpose & Capability: okThe skill's name, description, and SKILL.md all present informational background on Maxar (company, satellites, history, use cases). Nothing requested (no env vars, binaries, or installs) is outside that purpose.
Instruction Scope: okSKILL.md contains only explanatory text and 'read_when' triggers for contexts in which the content is relevant. It does not instruct the agent to read files, access environment variables, run commands, or transmit data to external endpoints.
Install Mechanism: okNo install spec or code files are present (instruction-only). No downloads or installations are required.
Credentials: okThe skill declares no required environment variables, credentials, or config paths — appropriate for a read-only informational skill.
Persistence & Privilege: okalways is false and the skill does not request persistent or elevated privileges. Autonomous invocation is allowed (platform default) but presents no additional risk here because the skill is read-only and has no external access.