Skillv1.0.0

ClawScan security

Breweries · ClawHub's context-aware review of the artifact, metadata, and declared behavior.

Scanner verdict

SuspiciousFeb 11, 2026, 8:58 AM

Verdict: suspicious
Confidence: medium
Model: gpt-5-mini
Summary: The skill's description and required tools match its brewery-search purpose, but the runtime instructions expect local scripts that are not included and there's no install spec — this mismatch and the implied external git/clone step are concerning.
Guidance: This skill appears to be honest about what it does (queries Open Brewery DB) and does not request credentials, but the package is incomplete: SKILL.md/README expect local executables that are not included. Before installing or running it, ask the publisher for the missing scripts or an explicit install spec, and review the code in the referenced GitHub repo yourself. If you must fetch from GitHub, inspect the scripts for unexpected network calls, credential access, or shell commands before making them executable. If you prefer lower risk, install a skill that bundles its code or provides a verified install mechanism in the registry.

Review Dimensions

Purpose & Capability: noteName/description, required binaries (bash, curl, jq), and use of Open Brewery DB align with a simple CLI that queries a public API. However, the SKILL.md describes a wrapper script at {skill_folder}/breweries and scripts/breweries that are not present in the package, so the skill as delivered cannot perform the actions it documents without fetching external code.
Instruction Scope: concernInstructions direct the agent to run local executable(s) (./breweries and scripts/breweries) and give concrete command examples. The package contains only README.md and SKILL.md — no executables or scripts. That mismatch means following the SKILL.md would either fail or require the agent/user to fetch and run external code, which broadens scope and risk.
Install Mechanism: concernThere is no install specification in the registry entry. The README suggests cloning a GitHub repo (https://github.com/jeffaf/breweries-skill.git) and running chmod on scripts — an ad-hoc external install. While GitHub is a common host, the registry should include an explicit, reviewable install spec; relying on a separate repo increases risk (implicit network fetch and execution of code not packaged with the skill).
Credentials: okThe skill requests no environment variables or credentials, and its functionality (querying a public API) does not require secrets. The declared required binaries are appropriate and proportional to the described CLI.
Persistence & Privilege: okThe skill does not request persistent/always-on installation and uses default model invocation settings. It does not declare access to other skills' configs or system-wide settings.