Back to skill
Skillv1.0.0
ClawScan security
Warehouse Flow Optimizer · ClawHub's context-aware review of the artifact, metadata, and declared behavior.
Scanner verdict
BenignApr 14, 2026, 12:27 AM
- Verdict
- Benign
- Confidence
- high
- Model
- gpt-5-mini
- Summary
- This skill is internally consistent: its description, runtime instructions, and included code all match a heuristics-based warehouse optimization brief and it does not request unrelated credentials, binaries, or external installs.
- Guidance
- This skill appears coherent and low-risk: it only analyzes user-provided notes and returns a markdown brief. Two practical cautions: (1) the skill's source and homepage are unknown — if you need an auditable third-party origin or support, prefer a skill with a verified publisher; (2) although the skill does not request credentials or network access, it can be invoked autonomously by agents by default — if you want to restrict autonomous use, disable model invocation for this skill in your agent settings. If you need tighter assurance, review the provided handler.py yourself or run the test file locally before installing.
Review Dimensions
- Purpose & Capability
- okThe name/description promise (heuristic warehouse flow briefs) matches the implementation: text normalization, keyword scoring, and markdown rendering. Nothing in the files attempts to access cloud services, WMS, or unrelated subsystems.
- Instruction Scope
- okSKILL.md explicitly states it must not connect to live WMS/OMS/labor telemetry and the handler only processes provided text/dictionaries. The instructions do not ask the agent to read system files, environment variables, or send data externally.
- Install Mechanism
- okThere is no install spec (instruction-only). Two local Python files are included but there is no downloading or extraction from external URLs and no packages or binaries required.
- Credentials
- okThe skill declares no required environment variables, credentials, or config paths and the code does not read os.environ or other credentials. The requested access is proportionate to the function.
- Persistence & Privilege
- okalways is false and the skill is user-invocable. It does not modify agent/system configs or request permanent presence. disable-model-invocation is default (false) which is normal for skills.