Skillv1.0.1

ClawScan security

Screenshots · ClawHub's context-aware review of the artifact, metadata, and declared behavior.

Scanner verdict

BenignFeb 15, 2026, 6:37 PM

Verdict: benign
Confidence: high
Model: gpt-5-mini
Summary: The skill is an instruction-only tool for producing app-store screenshots; its actions (creating ~/screenshots, storing preferences, using a vision check) match the described purpose and it does not request unrelated credentials or install code.
Guidance: This skill is internally consistent and does what it says: it will create a ~/screenshots folder, read/write memory.md and learnings.md, and keep versioned exports. It does not request API keys or install software. Before installing: (1) confirm you’re comfortable with a skill writing persistent files under ~/screenshots and avoid putting secrets or sensitive screenshots there; (2) review the created files after first run and set filesystem permissions if desired; (3) if you don't want the agent to act autonomously with this persistent data, keep autonomous invocation disabled at the agent/platform level. If you need more assurance, ask the skill author for a minimal manifest that restricts paths or for an option to store data in a temporary/project-only folder.

Review Dimensions

Purpose & Capability: okName/description (app-store screenshots, templates, iterative learning) match the instructions and files. The SKILL.md and supporting docs only describe image sizing, templates, workflows and storing templates/preferences — nothing requests unrelated platform access or credentials.
Instruction Scope: noteInstructions tell the agent to read/write files under ~/screenshots (memory.md, learnings.md, project config, versioned exports) and to use a vision model to verify screenshots. These file operations are coherent with the skill's purpose but grant the skill persistent access to a folder in the user's home directory; the skill also references optional local commands (e.g., xcrun simctl) as recommendations even though binaries are not declared as required.
Install Mechanism: okNo install spec or code is provided — this is instruction-only, so nothing is written to disk by an installer and no external packages/URLs are pulled. That minimizes install-time risk.
Credentials: noteThe skill requires no environment variables, binaries, or external credentials (proportional). However it persists per-user learnings and preferences in the home folder which may include user-identifying notes; users should avoid storing secrets in those files.
Persistence & Privilege: noteThe skill explicitly creates and uses persistent storage at ~/screenshots (memory.md, learnings.md, versioned exports and symlinks). always:false and it does not modify other skills. Persistent storage is reasonable for this workflow but is a persistent presence in the user's home directory and may accumulate personal data over time.