Back to skill
Skillv1.0.1
ClawScan security
GraphQL · ClawHub's context-aware review of the artifact, metadata, and declared behavior.
Scanner verdict
BenignMay 1, 2026, 5:30 AM
- Verdict
- Benign
- Confidence
- high
- Model
- gpt-5.5
- Summary
- This is an instruction-only GraphQL guidance skill with no code, credentials, installation steps, persistence, or external access requested.
- Guidance
- This skill appears safe to install as a documentation-style aid for GraphQL design and security practices. Review its advice for fit with your project, but the supplied artifacts do not request sensitive access or perform actions.
Review Dimensions
- Purpose & Capability
- okThe artifacts consistently provide GraphQL design, performance, client, schema, and security guidance aligned with the stated purpose.
- Instruction Scope
- okThe content is advisory documentation and does not instruct the agent to run commands, call external services, change local files, or take autonomous actions.
- Install Mechanism
- okThere is no install spec and no code files; the skill is instruction-only.
- Credentials
- okNo binaries, environment variables, configuration paths, credentials, network access, or host permissions are requested.
- Persistence & Privilege
- okThe artifacts show no persistence, background behavior, credential use, account access, or privilege escalation.