Shipping Operations
PassAudited by VirusTotal on May 11, 2026.
Overview
Type: OpenClaw Skill Name: shipping Version: 1.0.0 The OpenClaw AgentSkills skill bundle for 'shipping' is benign. All files, including the SKILL.md and other instructional markdown, consistently guide the AI agent to perform shipping operations responsibly. The `SKILL.md` explicitly states that no data leaves the machine by default, the skill does not access undeclared external services, and it does not store payment credentials or modify files outside its designated local memory directory (`~/shipping/`). Furthermore, `memory-template.md` and `setup.md` instruct the agent to redact sensitive identifiers and avoid saving unnecessary personal data. There is no evidence of prompt injection with malicious intent, data exfiltration, unauthorized execution, or persistence mechanisms.
Findings (0)
Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.
Your shipping preferences and operational patterns may be saved locally and reused in later shipping decisions.
The skill intentionally persists operational shipping knowledge for reuse across future tasks. This is purpose-aligned and local, but users should notice that stored route, carrier, customs, and incident patterns can influence later recommendations.
After each meaningful case, update memory with: - Carrier performance by route - Recurring surcharge patterns - Packaging failures and fixes - Country-specific documentation pitfalls
Keep ~/shipping/ free of secrets, customer identifiers, payment data, and unnecessary personal information; periodically review or edit the memory file if shipping practices change.