Back to skill
Skillv1.0.0
ClawScan security
rasptorch · ClawHub's context-aware review of the artifact, metadata, and declared behavior.
Scanner verdict
BenignApr 15, 2026, 5:59 PM
- Verdict
- benign
- Confidence
- high
- Model
- gpt-5-mini
- Summary
- Instructions are coherent with a CLI-wrapper skill: it only directs an agent to run the rasptorch CLI (or module) and explicitly limits writes/long-running actions to user-approved cases.
- Guidance
- This skill is a thin wrapper around the rasptorch CLI and appears internally consistent. Before installing or enabling it: 1) ensure you trust the rasptorch binary you will run (the skill executes that binary — if the binary is untrusted it could do anything your account can). 2) Confirm you want the agent to be able to run long-running tasks, start a Streamlit server, or save/load model files; the skill correctly asks for approval for these actions but you should enforce that in your agent policy. 3) If you need stronger isolation, run rasptorch and the agent in a sandboxed environment or inspect the rasptorch package source prior to use.
Review Dimensions
- Purpose & Capability
- okThe name/description (manage tensors, inspect Vulkan, build/train models) align with the runtime instructions, which call the rasptorch CLI or python -m rasptorch. Required binaries (rasptorch, python/py) are appropriate for this purpose.
- Instruction Scope
- okSKILL.md instructs only CLI invocations and prefers JSON output. It explicitly warns to ask user approval before writing files, launching Streamlit UI, starting long-running servers, or training. It does not instruct reading unrelated files, harvesting environment variables, or sending data to unexpected endpoints.
- Install Mechanism
- okThis is an instruction-only skill with no install spec and no bundled code. Nothing is downloaded or written by the skill itself.
- Credentials
- okNo environment variables, credentials, or config paths are requested. The declared runtime requirements (presence of rasptorch/python) are proportionate to a CLI integration.
- Persistence & Privilege
- okalways is false and the skill does not request elevated or persistent system privileges. It does not modify other skills or system-wide settings. Autonomous invocation is allowed (platform default) but that is expected for skills and not by itself a concern.