Skillv1.0.0

ClawScan security

Legal Negotiation Position Planner · ClawHub's context-aware review of the artifact, metadata, and declared behavior.

BenignApr 26, 2026, 10:50 PM

Verdict: benign
Confidence: high
Model: gpt-5-mini
Summary: This is an instruction-only, descriptive legal workflow skill that matches its description and requests no credentials, binaries, or installs.
Guidance: This skill is a document-only planner and appears internally consistent. Before using it, avoid pasting privileged or confidential documents unless you intend to share them; redact sensitive details where possible. Remember it provides workflow templates and checklists, not legal advice — verify any legal conclusions with qualified counsel. Because it has no code, installs, or requested credentials, the primary risk is accidental disclosure of sensitive case material, so treat inputs accordingly.

Purpose & Capability: okName, description, skill.json, README.md, and SKILL.md all describe the same document-only negotiation planning capability; there are no unrelated environment requirements or binaries.
Instruction Scope: noteSKILL.md instructs the agent to collect facts, documents, parties, dates, jurisdiction, and other case context — which is appropriate for producing negotiation plans but can lead users to disclose sensitive or privileged information. The skill includes explicit disclaimers and ethics/ confidentiality warnings, which is appropriate.
Install Mechanism: okNo install spec and no code files — lowest-risk, descriptive-only package. ACCEPTANCE.md explicitly forbids handlers/scripts and the package conforms.
Credentials: okskill.json and SKILL.md declare no required environment variables, credentials, or config paths; nothing in the package requests unrelated secrets or external service access.
Persistence & Privilege: okFlags show no always:true, no install, and the package is user-invocable only. The skill does not request persistent presence or modify other skills/config.