Back to skill
Skillv0.13.0
ClawScan security
Mirroir · ClawHub's context-aware review of the artifact, metadata, and declared behavior.
Scanner verdict
BenignFeb 18, 2026, 3:35 AM
- Verdict
- benign
- Confidence
- medium
- Model
- gpt-5-mini
- Summary
- The skill's requirements and instructions are consistent with its stated purpose (controlling an iPhone via macOS mirroring), but it directs the user to run a remote install script and to grant system-level permissions (Karabiner/DriverKit, Screen Recording, Accessibility), so review the installer and permissions before installing.
- Guidance
- Before installing: 1) Inspect the installer: do NOT run curl | bash without reviewing https://mirroir.dev/get-mirroir.sh — prefer Homebrew (brew tap jfarcand/tap && brew install iphone-mirroir-mcp) or npx if you trust the npm package. 2) Verify sources: check the jfarcand/tap Homebrew formula and the iphone-mirroir-mcp npm package or upstream repo to confirm maintainers and code. 3) Understand permissions: Karabiner/DriverKit, Screen Recording, and Accessibility give the tool the ability to capture screen and synthesize input (keystroke capture / injection risk); only grant them on a trusted machine and revoke if you stop using the tool. 4) Limit exposure: run on a dedicated/test mac if possible, review MCP/server command config, and consider whether you want the agent to call this skill autonomously. 5) If unsure, request the upstream source code or run installation in an isolated environment (VM) and audit installed components before use.
Review Dimensions
- Purpose & Capability
- okThe skill claims to control an iPhone via macOS iPhone Mirroring and requires the iphone-mirroir-mcp binary and macOS — this is coherent. Karabiner-Elements and a helper daemon are reasonable for virtual keyboard/control functionality. OS restriction to darwin and listed tools match the purpose.
- Instruction Scope
- noteRuntime instructions do not request unrelated files or credentials, but they include a one-line install that executes a remote script: /bin/bash -c "$(curl -fsSL https://mirroir.dev/get-mirroir.sh)". The SKILL.md also instructs enabling DriverKit/Karabiner and granting Screen Recording and Accessibility — expected for this capability but high-privilege and worth explicit review.
- Install Mechanism
- noteInstall options include Homebrew (jfarcand/tap) and an npm package (iphone-mirroir-mcp), which are reasonable. However the SKILL.md recommends a direct curl | bash installer from mirroir.dev (arbitrary remote script execution). Prefer vetted package installs or inspect the installer before running.
- Credentials
- okNo environment variables or external credentials are requested. Requests for system permissions (Accessibility, Screen Recording, DriverKit extension) are proportional to a tool that simulates input and captures the screen, but they carry privacy/security implications (e.g., potential to capture keystrokes and screen contents).
- Persistence & Privilege
- noteThe skill installs a helper daemon / MCP server and Karabiner components which run with system-level capabilities. It does not set always: true and does not request other skills' configs, but installing driver-level components and a persistent MCP helper increases blast radius and should be consented to consciously.