Clawdhub Copy
ReviewAudited by ClawScan on May 10, 2026.
Overview
This skill is coherent, but it gives the agent broad ability to install, bulk-update, force-update, and publish skills without clear confirmation guardrails.
Install only if you want the agent to manage ClawdHub skills. Before using it, set a rule that installs, bulk updates, force/no-input updates, and publishing require your explicit approval, and prefer trusted publishers and pinned versions.
Findings (3)
Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.
An agent using this skill could change many installed skills at once, potentially altering future agent behavior without the user reviewing each change.
This is a bulk update command that explicitly suppresses prompts and forces changes to installed skills; the artifacts do not add approval or review requirements before using it.
clawdhub update --all --no-input --force
Require explicit user confirmation before install, update, update-all, force, no-input, or publish operations; prefer pinned versions and avoid --force/--no-input unless the user specifically requests them.
A compromised, mistaken, or unexpected registry package/update could be pulled into the agent's skill environment and affect later tasks.
The skill installs and updates agent skills from an external registry and defaults updates to the latest version unless pinned, which can introduce unreviewed supply-chain changes.
Default registry: https://clawdhub.com ... Update command hashes local files, resolves matching version, and upgrades to latest unless --version is set
Only install from trusted publishers, review skill contents before enabling them, pin versions where possible, and document a rollback or approval process for updates.
If used while logged into the wrong account, the agent could publish or update skills under that account.
Publishing requires logging into a ClawdHub account, which is expected for the stated publish feature but gives the CLI delegated account authority.
Auth (publish) ```bash clawdhub login clawdhub whoami ```
Log in only when publishing is needed, verify the account with whoami, and require confirmation before any publish command.