Back to skill
Skillv1.0.0
ClawScan security
Netflix Inc · ClawHub's context-aware review of the artifact, metadata, and declared behavior.
Scanner verdict
BenignApr 23, 2026, 3:02 PM
- Verdict
- benign
- Confidence
- high
- Model
- gpt-5-mini
- Summary
- This is an instruction-only analysis skill about Netflix that asks for no credentials, installs, or file access and its runtime instructions are consistent with its stated purpose.
- Guidance
- This skill appears internally consistent and low-risk: it is instruction-only, requests no installs or credentials, and simply provides Netflix analysis. However, the source and homepage are unknown—if you care about provenance, prefer skills from known publishers or verify the owner before installing. Also review agent permissions (network access, logs) if you want to limit any ability to fetch live data when the skill is used.
Review Dimensions
- Purpose & Capability
- okThe name/description promise an industry analysis of Netflix and the SKILL.md contains only analysis guidance and facts; there are no unrelated environment variables, binaries, or installation steps requested. The requested footprint is minimal and proportional to an information/analysis skill.
- Instruction Scope
- okThe SKILL.md gives high-level guidance for when to provide Netflix industry analysis (competition, content strategy, ads, recommendation systems). It does not instruct the agent to read system files, environment variables, or to exfiltrate data or call unexpected external endpoints.
- Install Mechanism
- okNo install spec and no code files are present (instruction-only). This is the lowest-risk installation model: nothing is written to disk and no third-party packages are pulled.
- Credentials
- okThe skill declares no required environment variables, credentials, or config paths. That is appropriate for an informational/analysis skill and avoids disproportionate access to secrets.
- Persistence & Privilege
- okalways is false and the skill is user-invocable (normal). disable-model-invocation is false (the platform default allowing autonomous invocation); this alone is not a concern given the skill's minimal scope and lack of privileged access.