Skillv0.1.0

ClawScan security

Campertunity · ClawHub's context-aware review of the artifact, metadata, and declared behavior.

BenignApr 14, 2026, 11:25 AM

Verdict: benign
Confidence: high
Model: gpt-5-mini
Summary: The skill's declared purpose (searching, checking availability, and providing booking links for campgrounds) matches what it requests and instructs; it relies on an npm CLI helper and does not ask for credentials or sensitive system access.
Guidance: This skill appears internally consistent: it runs an npm CLI tool to search campsite listings and returns booking links and availability. Before installing, verify the npm package and its source (campertunity-ai-tools) — check the package's npm page or GitHub repo, inspect package.json and any install/run scripts, and confirm the homepage link is legitimate. Because the skill executes a third-party package via npx, consider running it in a sandbox or container if possible, and avoid providing any account credentials or payment information to the skill itself. If you need higher assurance, ask the publisher for a link to the package source or prefer a pinned release rather than running unpinned npx installs.

Purpose & Capability: okThe name/description match the runtime instructions: SKILL.md describes searching, details, availability, and returning booking URLs. Requiring the campertunity-ai-tools CLI (or npx to run it) is coherent with this purpose.
Instruction Scope: okThe instructions are scoped to adding an MCP server that runs the campertunity-ai-tools package and invoking its listing-* tools. They do not instruct the agent to read arbitrary files, environment variables, or other system configuration outside of starting the MCP server and using the declared tools.
Install Mechanism: noteInstall is an npm package (campertunity-ai-tools), which is a common and expected mechanism for a CLI helper but carries moderate supply-chain risk compared with instruction-only skills. The install spec does not download from a random URL or use shorteners, but installing and executing an npm package will run third-party code on the agent host.
Credentials: okNo environment variables, credentials, or config paths are requested. This matches the described functionality (search + booking links). There are no disproportionate credential requests.
Persistence & Privilege: noteThe skill does not request always:true and is user-invocable. It asks the agent to run an external MCP server (via npx), so runtime behavior includes executing third-party code and making network calls — expected for this kind of integration but worth noting as a privilege to the executed package.