Skillv1.0.0

ClawScan security

Travel Skill Transfer Planner · ClawHub's context-aware review of the artifact, metadata, and declared behavior.

BenignApr 21, 2026, 4:12 AM

Verdict: benign
Confidence: high
Model: gpt-5-mini
Summary: The skill's code, declared requirements, and runtime instructions are internally consistent: it is a self-contained descriptive travel-planning skill that does not request credentials, perform network calls, or install additional software.
Guidance: This skill appears coherent and low-risk: it contains a small local handler that returns JSON and includes tests, and it does not request credentials or perform network I/O. Notes before installing: 1) SKILL.md emphasizes 'no code execution' but a local handler.py exists — inspect the handler if you want to confirm no unexpected behavior (the provided handler is benign). 2) Although the skill requests no secrets and has no install step, any skill that can be executed by your agent can run autonomously per platform defaults — review agent-level permissions if you are concerned about automatic invocation. 3) If you need absolute assurance, run the tests locally and review handler.py; otherwise this skill is proportionate to its stated purpose.

Purpose & Capability: okName/description (travel skill transfer planning) align with the included files and behavior. The handler implements descriptive analysis and returns JSON; the declared metadata (skill.json) matches purpose. No unrelated credentials, binaries, or config paths are requested.
Instruction Scope: noteSKILL.md states 'no code execution, external APIs, or network requests'. The repository includes a handler.py (pure Python) and tests — the code is local and does not perform subprocess, network, or file reads beyond program input, so this is consistent in practice. Minor mismatch in phrasing: SKILL.md reads like an instruction-only skill, but a simple local handler implementation is present; this is low-risk but worth noting.
Install Mechanism: okNo install spec present (instruction-only / no external installer). There is no downloading or extracted archive, and no package installation instructions. Low installation risk.
Credentials: okRequires no environment variables, credentials, or config paths. The handler does not access the environment or external services. The requested access is proportionate to the stated purpose.
Persistence & Privilege: okalways is false and there are no indications the skill attempts to modify other skills or system-wide settings. The skill has normal autonomous-invocation defaults but requests no elevated persistence or privileges.