ClawHub
Back to skill
v1.0.0

system-health-monitor

BenignClawScan verdict for this skill. Analyzed May 1, 2026, 8:18 AM.

Analysis

This skill coherently performs local system health checks, with a fixed shell command for disk usage and limited local file reads that match its stated purpose.

GuidanceThis appears to be a straightforward local health-monitoring skill. Before installing, be aware that it will run a fixed disk-usage shell command and read local logs/skills directories under the current working directory to produce its report.

Findings (2)

Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.

Abnormal behavior control

Checks for instructions or behavior that redirect the agent, misuse tools, execute unexpected code, cascade across systems, exploit user trust, or continue outside the intended task.

Unexpected Code Execution
SeverityLowConfidenceHighStatusNote
index.js
const output = execSync('df -h / | tail -1', { encoding: 'utf-8' });

The skill executes a local shell command to obtain disk usage. The command is fixed and purpose-aligned, but users should notice that installing/running the skill permits local command execution.

User impactWhen run, the skill can execute a local disk-inspection command and report system information such as disk usage.
RecommendationUse only if you are comfortable allowing this skill to run local system diagnostic commands; the command is fixed and should not execute user-supplied input.
Agentic Supply Chain Vulnerabilities
SeverityInfoConfidenceHighStatusNote
metadata
Source: unknown; Homepage: none

The package provenance is not externally identified in the provided metadata. The included code is small and dependency-free, so this is a provenance note rather than a behavioral concern.

User impactYou may have less external context for who maintains the skill or where to verify its source.
RecommendationReview the included files before installing and prefer trusted publishers or packages with clear source links when available.