Back to skill
Skillv1.0.0
ClawScan security
Kimi2.5skill · ClawHub's context-aware review of the artifact, metadata, and declared behavior.
Scanner verdict
BenignApr 26, 2026, 7:25 AM
- Verdict
- benign
- Confidence
- high
- Model
- gpt-5-mini
- Summary
- The skill is an instruction-only troubleshooting playbook for Kimi 2.5/OpenClaw image issues and its requested actions match that purpose; nothing requested is disproportionate or unrelated.
- Guidance
- This is an ops playbook (no code) and it is internally consistent with its purpose. Before using it: 1) run the troubleshooting steps manually first (openclaw status, a real image test) to confirm symptoms; 2) back up any models.json files before editing; 3) inspect provider blocks for embedded credentials and handle them carefully; 4) avoid letting the agent perform edits and gateway restarts autonomously — run changes under a human operator or with appropriate access controls; 5) verify the paths referenced (they include examples like /Users/admin-ai) match your environment. If you want the agent to perform any edits automatically, restrict that to trusted, privileged agents and log all changes.
Review Dimensions
- Purpose & Capability
- okName/description match the instructions: the skill is a runbook for troubleshooting image/OCR failures and directs checks of OpenClaw runtime and agent-level models.json files, restart of gateway, and regression tests — all coherent with the stated purpose.
- Instruction Scope
- noteInstructions explicitly tell the operator/agent to inspect and edit config files under ~/.openclaw and to restart the gateway and run the 'image' tool. That is expected for an ops playbook, but it does instruct reading and modifying user-specific files and performing privileged operations (restart/config edits) — these should be done under human supervision and with backups.
- Install Mechanism
- okNo install spec and no code files — the skill is instruction-only, so nothing is written to disk or downloaded by the skill itself.
- Credentials
- noteThe skill does not request environment variables or credentials. However, the referenced models.json/provider blocks could contain provider credentials in practice; the playbook's advice to remove provider blocks may expose or alter those secrets, so operators should back up files and confirm credential handling before editing.
- Persistence & Privilege
- okalways is false and the skill does not try to persist or modify other skills or global agent settings. Be cautious if the agent is allowed to invoke skills autonomously: following the playbook could involve automated edits and restarts if the agent acts without human oversight.