Back to skill
Skillv1.0.0
ClawScan security
Travel Business Wellness Integrator · ClawHub's context-aware review of the artifact, metadata, and declared behavior.
Scanner verdict
BenignApr 21, 2026, 3:03 AM
- Verdict
- benign
- Confidence
- high
- Model
- gpt-5-mini
- Summary
- The skill is internally consistent: a descriptive travel-wellness helper with no network calls, no requested secrets, and simple local code that returns JSON.
- Guidance
- This skill appears coherent and low-risk: it produces descriptive travel-wellness recommendations locally and does not request credentials or perform network calls. Things to consider before enabling: (1) review handler.py yourself if you can to confirm it matches the shipped code (it does here and contains only simple text processing and JSON output), (2) avoid sending sensitive personal data (credentials, medical records, or PII) in prompts to any skill, and (3) if you require stricter guarantees, run the included tests and execute the handler in an isolated environment to inspect behavior. Overall this bundle is consistent with its stated purpose.
Review Dimensions
- Purpose & Capability
- okName/description (business travel + wellness) align with the provided SKILL.md, skill.json, and handler.py. The handler produces travel-wellness recommendations and JSON output as advertised; no unrelated credentials, binaries, or cloud integrations are requested.
- Instruction Scope
- noteSKILL.md repeatedly states 'No code execution' and 'No external APIs'; the skill is instruction-only in the registry but does include a local handler.py that executes for runtime responses. This is not harmful here — the handler performs only local string analysis and JSON serialization with no network, file, or env access — but the phrasing in SKILL.md could be clearer (it likely means 'no external execution or network calls').
- Install Mechanism
- okNo install spec is present (instruction-only), so nothing is downloaded or installed. The only code is included in the bundle (handler.py, tests) which is small and straightforward.
- Credentials
- okThe skill requires no environment variables, credentials, or config paths. The handler does not read env vars or access other system credentials.
- Persistence & Privilege
- okThe skill is not always-enabled and uses default model invocation behavior. It does not request persistence, modify system-wide agent settings, or access other skills' configuration.