Back to skill
Skillv1.0.0
ClawScan security
Daily Review Ritual · ClawHub's context-aware review of the artifact, metadata, and declared behavior.
Scanner verdict
BenignFeb 11, 2026, 8:25 AM
- Verdict
- benign
- Confidence
- medium
- Model
- gpt-5-mini
- Summary
- The skill's instructions and requirements are coherent with an end-of-day note-taking/review helper; it makes no opaque install or credential requests, but the instructions are somewhat vague about which notes/projects to access.
- Guidance
- This is an instruction-only, low-install-risk skill whose behavior matches its description. However, the SKILL.md assumes access to your notes and project data but doesn't specify where they live. Before enabling or using it, check what data the agent can access: if your agent has filesystem or third-party app access, confirm which vault/Notion workspace/notes folder will be read/modified. Back up important notes or test the skill in a restricted sandbox or sample vault first to ensure it only updates the locations you expect. If you need tighter guarantees, request a version of the skill that explicitly names the storage target or requires a connection token for a specific service.
Review Dimensions
- Purpose & Capability
- okName and description match the content of SKILL.md. The actions described (find today's notes, create/update a daily note, archive completed tasks) are consistent with a daily-review helper and no unrelated resources, binaries, or credentials are requested.
- Instruction Scope
- noteThe instructions ask the agent to 'find all notes modified today', 'identify new notes', 'move completed project tasks to archive', and to create/update a daily note. These are reasonable for a review skill but are vague about where notes/projects live (local files, Obsidian/Notion/other). That vagueness gives the agent broad discretion to access whatever storage it can reach; the skill does not declare or limit which paths/services should be used.
- Install Mechanism
- okNo install spec and no code files (instruction-only). This is low-risk for installation because nothing is downloaded or written to disk by the skill itself.
- Credentials
- okThe skill requests no environment variables, credentials, or config paths. Its declared requirements are proportionate to its stated purpose.
- Persistence & Privilege
- okThe skill is not always-included and does not request elevated or persistent platform privileges. It is user-invocable and can be invoked autonomously (platform default), which is expected for such a helper.