Back to skill
Skillv1.0.0
ClawScan security
Context7 Documentation Skill · ClawHub's context-aware review of the artifact, metadata, and declared behavior.
Scanner verdict
BenignFeb 18, 2026, 8:32 AM
- Verdict
- benign
- Confidence
- high
- Model
- gpt-5-mini
- Summary
- The skill's code, scripts, and runtime instructions are consistent with its stated purpose of querying the Context7 documentation API; it only requires curl/jq and an optional CONTEXT7_API_KEY and does not request unrelated credentials or elevated privileges.
- Guidance
- This skill appears coherent and limited to calling Context7's API for documentation. Before installing, confirm you trust the Context7 domain and the skill owner; avoid sending any secrets or private code in queries (the SKILL.md already warns about this). If you plan to use sensitive or proprietary code, do not include it in queries to external services. Optionally set a CONTEXT7_API_KEY for higher rate limits and review Context7's privacy policy or the upstream GitHub repo if you want additional assurance.
Review Dimensions
- Purpose & Capability
- okName/description match the included scripts and API reference: the two shell scripts call https://context7.com/api/search and /context to resolve library IDs and fetch docs. Required tools (curl, jq) and the optional CONTEXT7_API_KEY are exactly what a docs-lookup integration would need.
- Instruction Scope
- okSKILL.md and the scripts only instruct the agent to make HTTP POST requests to Context7 endpoints with user queries/library IDs. They do not read local files, other environment variables, or system configuration, and they explicitly warn not to include secrets in queries.
- Install Mechanism
- okNo install spec — instruction-only with included shell scripts. No downloads or archive extraction; nothing is written to disk beyond using the provided scripts. Risk from installation is low.
- Credentials
- okNo required environment variables; a single optional CONTEXT7_API_KEY is declared and clearly justified for rate-limiting. The skill does not request unrelated credentials or access to other config paths.
- Persistence & Privilege
- okThe skill does not request persistent/always-on privileges (always: false) and does not modify other skills or system settings. It can be invoked autonomously (platform default), which is appropriate for this kind of integration.