Back to skill
Skillv1.5.0
ClawScan security
ThumbGate · ClawHub's context-aware review of the artifact, metadata, and declared behavior.
Scanner verdict
BenignApr 15, 2026, 7:59 PM
- Verdict
- Benign
- Confidence
- high
- Model
- gpt-5-mini
- Summary
- The skill's declared purpose (pre-action gating for repeated bad tool calls) matches what its instructions request and do: it expects a thumbgate CLI, bootstraps a local .thumbgate directory, and wires agent hooks; there are no unexplained credentials or installs hidden in the SKILL.md.
- Guidance
- ThumbGate appears internally consistent with its stated goal. Before installing or running npx thumbgate init: 1) inspect the npm package or GitHub repo (https://github.com/IgorGanapolsky/ThumbGate) to review code that will be downloaded and run; 2) back up your agent configuration so you can revert any changes the tool makes to 'PreToolUse' hooks; 3) be aware that npx will fetch and execute remote code (review package version and checksum if possible); 4) if you plan to use the hosted/team features, clarify where lessons are stored and what credentials or data are sent to the remote dashboard. If you cannot review the package source, treat npx installs as higher risk.
Review Dimensions
- Purpose & Capability
- okName/description describe pre-action gates and blocking repeated bad tool calls; the skill requires a 'thumbgate' CLI binary and the SKILL.md documents an npm package and npx usage—this is consistent with the stated purpose.
- Instruction Scope
- noteRuntime instructions tell the user/agent to run 'npx thumbgate init' which bootstraps a local .thumbgate/ and 'wires PreToolUse hooks' into MCP-compatible agents. This implies the tool will modify local agent configuration and write files (expected for this functionality) but the SKILL.md does not instruct reading unrelated system files or exfiltrating data.
- Install Mechanism
- noteThere is no registry install spec, but the SKILL.md metadata and examples use npm/npx to install 'thumbgate'. npm/npx will download and execute remote package code at runtime—normal for a CLI but higher-risk than instruction-only skills that use only existing binaries. The package repo and homepage are provided, which aids review.
- Credentials
- okThe skill requests no environment variables or credentials. The product references an optional hosted dashboard / team DB, but no credentials or endpoints are required by the SKILL.md itself; using hosted services would require separate credentials not declared here.
- Persistence & Privilege
- noteThe tool will create a local .thumbgate/ directory and modify agent hooks/config to intercept PreToolUse events (as advertised). The skill is not always-enabled and does not request system-wide or cross-skill credentials; filesystem/config edits are expected for this functionality but warrant user review before installation.