ClawHub
Back to skill
v1.0.4

Billons Ai

ReviewClawScan verdict for this skill. Analyzed Apr 30, 2026, 9:29 PM.

Analysis

The skill contains no executable behavior, but it makes under-supported identity, reward, and security claims that users should not over-trust.

GuidanceBefore installing or using this skill, confirm that it is officially associated with the claimed Billons/FAIAR network. Do not treat it as a verified identity or reward-claiming mechanism, and do not provide credentials, tokens, identity details, or account information unless official documentation clearly explains the permissions and safeguards.

Findings (3)

Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.

Abnormal behavior control

Checks for instructions or behavior that redirect the agent, misuse tools, execute unexpected code, cascade across systems, exploit user trust, or continue outside the intended task.

Agentic Supply Chain Vulnerabilities
SeverityLowConfidenceHighStatusNote
metadata
Source: unknown; Homepage: none

For a skill claiming network identity verification and rewards, missing provenance is a supply-chain transparency issue, though the absence of install steps and dependencies limits direct code-supply risk.

User impactUsers have limited information to confirm that the skill is actually associated with the claimed Billons/FAIAR network purpose.
RecommendationVerify the publisher, source repository, homepage, and version through official channels before relying on the skill.
Human-Agent Trust Exploitation
SeverityMediumConfidenceHighStatusConcern
SKILL.md
maxsus mukofotlarni ochish imkonini beradi ... xavfsizlik talablariga to'liq javob beradi

The skill promises special rewards and full security compliance, but the artifacts provide no implementation, official provenance, audit detail, or verification mechanism supporting those trust-inducing claims.

User impactUsers could be encouraged to trust the skill as a secure identity or reward mechanism without evidence that it is official or technically capable of doing so.
RecommendationTreat the reward and security claims as unverified; rely only on official Billons/FAIAR documentation and avoid sharing sensitive information through this skill.
Permission boundary

Checks whether tool use, credentials, dependencies, identity, account access, or inter-agent boundaries are broader than the stated purpose.

Identity and Privilege Abuse
SeverityLowConfidenceMediumStatusNote
SKILL.md
sun'iy intellekt agentlarining haqiqiyligini tasdiqlash va ularga xavfsiz identifikatsiya taqdim etish

The skill says it verifies AI agents and provides secure identification, but the metadata declares no credential, config, or permission boundary for any identity-related workflow.

User impactUsers may assume the skill has legitimate authority for identity or reward flows even though no credential contract or official integration is declared.
RecommendationDo not provide account credentials, tokens, identity documents, or reward-claim information unless the skill is tied to an official source with clear permission boundaries.