Skillv1.0.0

ClawScan security

Ai Financial Report Cn · ClawHub's context-aware review of the artifact, metadata, and declared behavior.

Scanner verdict

ReviewMar 4, 2026, 5:35 AM

Verdict: Review
Confidence: high
Model: gpt-5-mini
Summary: The SKILL.md reads like a full-featured financial SaaS product, but the published skill is instruction-only with no code, no install, and no declared credentials — the promised integrations/exports are unimplemented or undocumented.
Guidance: This package is essentially a marketing/instruction document, not an implementation. Before installing or using it: (1) don't upload any real or sensitive financial data — the skill contains no code or documented backend to handle uploads; (2) ask the publisher for the implementation details (source code, API endpoints, where exports are produced, and what credentials are required); (3) if you expect ERP/API/Excel import/export functionality, require verified code or a trustworthy hosted service and an explicit privacy/security policy; (4) prefer skills that declare required environment variables and provide an install spec or source repo so you can audit what runs. If the author provides code, install scripts, or third-party endpoints, re-evaluate based on those concrete artifacts.

Review Dimensions

Purpose & Capability: concernThe name/description promise automated report generation, API, ERP integration, multi-format export, multi-account management and private deployment. However the package contains no code, no install steps, and no declared environment variables or endpoints to perform imports/exports/integrations — this is a mismatch between claimed capabilities and the actual artifact.
Instruction Scope: concernSKILL.md is largely marketing and examples (how data might look, sample outputs). It tells users to 'upload Excel' and 'API对接' but provides no runtime instructions, no endpoints, and no guidance for handling credentials or file uploads. The instructions are vague and give the agent broad, undefined discretion (e.g., '一键生成', '自动化生成') with no implementation details.
Install Mechanism: okNo install spec and no code files — low installation risk. Nothing is written to disk or downloaded by the skill as published.
Credentials: noteThe skill declares no required env vars or credentials, which reduces immediate risk. However the advertised features (API interface, ERP integration, private deployment) would normally require credentials and endpoints — their absence suggests the feature list is aspirational or undocumented.
Persistence & Privilege: okalways is false and there is no indication the skill requests persistent/system-level privileges or modifies other skills. Autonomous invocation is enabled by platform default but not combined with other concerning privileges here.