Back to skill
Skillv1.0.0
ClawScan security
Matlab Bridge · ClawHub's context-aware review of the artifact, metadata, and declared behavior.
Scanner verdict
BenignApr 16, 2026, 11:06 AM
- Verdict
- benign
- Confidence
- high
- Model
- gpt-5-mini
- Summary
- The skill is internally consistent with its stated purpose (bridging to a local MATLAB installation); it asks for no credentials or external installs, but it runs arbitrary MATLAB code locally and writes files to disk, so you should only run trusted code and verify output paths.
- Guidance
- This skill appears to do what it says: it launches your local MATLAB to run code and save outputs. Before installing or using it, consider the following: - Only run trusted MATLAB code. The skill executes arbitrary MATLAB commands provided by the agent/user, so malicious or buggy MATLAB code can read/write files, run system commands (via MATLAB's system/web functions), or leak sensitive data in saved .mat/.csv files. - Confirm the output directory. SKILL.md and test scripts reference D:\Personal\OpenClaw\matlab-outputs\, while the bridge's default output directory is repository-relative (./matlab-outputs under the OpenClaw root). Decide where outputs should go and adjust parameters or code to avoid accidental overwrites of important files. - Consider running in a sandbox or with limited-privilege account if you will execute untrusted scripts (e.g., virtual machine, container, or separate user profile). - The skill requires a local MATLAB installation and valid license; it does not request cloud credentials or network access, but MATLAB itself can make network calls if your scripts use web APIs. - If you need stronger guarantees, inspect or modify the code to restrict allowed MATLAB operations (e.g., disallow system/web calls) or to redirect outputs to a safe directory. If you want me to point out exact lines to change to relocate the output directory or to add safeguards (e.g., disable save of workspace, sanitize incoming code), tell me which protection you prefer and I can produce concrete edits.
Review Dimensions
- Purpose & Capability
- okName/description match the actual code: the Python modules implement launching MATLAB in batch mode, running .m files, and exchanging files/workspaces. No unrelated credentials, binaries, or cloud services are requested.
- Instruction Scope
- noteSKILL.md and the code instruct the agent to generate and execute arbitrary MATLAB code and to save workspaces and files to a local output directory. This is expected for a MATLAB bridge but means the skill can read/write local files and run any MATLAB commands the user (or agent) supplies — dangerous if given untrusted input. The SKILL.md/README/test scripts also reference a hardcoded Windows path (D:\Personal\OpenClaw\matlab-outputs\) while the bridge's default output directory is repo-relative; this inconsistency should be confirmed before use.
- Install Mechanism
- okNo install spec: the skill is instruction/code-only and expects a local MATLAB installation. No network downloads or package installs are performed by the skill itself.
- Credentials
- okThe skill requests no environment variables, credentials, or config paths. It only requires MATLAB to be present on PATH (or explicit matlab_path). This is proportionate to its function.
- Persistence & Privilege
- okalways is false and the skill does not modify other skills or system-wide configuration. It writes outputs and optional workspace .mat files into an output directory (which may be repo-relative or a hardcoded Windows path in some helper scripts).