v1.0.0

Glasses to Social

ReviewClawScan verdict for this skill. Analyzed May 1, 2026, 4:56 AM.

Analysis

The skill is coherent, but it asks you to make a smart-glasses photo folder viewable to anyone with the link and can support periodic checks and social posting, so review privacy and account permissions carefully.

GuidanceBefore installing, decide whether you are comfortable putting smart-glasses photos in a link-accessible Google Drive folder. Prefer a private, dedicated folder with narrow access, keep autoPost false, require explicit approval for every post, and install gdown/jq only from trusted sources.

Findings (5)

Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.

Abnormal behavior control

Checks for instructions or behavior that redirect the agent, misuse tools, execute unexpected code, cascade across systems, exploit user trust, or continue outside the intended task.

Tool Misuse and Exploitation

SeverityMediumConfidenceHighStatusNote

SKILL.md

Wait for "POST" confirmation or edits ... On approval, publish to configured platform (X/Twitter, etc.)

Publishing to a social platform is a high-impact account action, but the instructions explicitly require user approval before posting.

User impactIf misconfigured or approved too casually, drafts could become public posts from the user's account.

RecommendationKeep auto-posting disabled, require explicit per-post confirmation, preview the image and caption before approval, and use least-privilege social-media credentials where possible.

Rogue Agents

SeverityLowConfidenceHighStatusNote

SKILL.md

"schedule": {"kind": "cron", "expr": "*/15 * * * *", "tz": "UTC"}

The skill documents periodic monitoring via cron. This is disclosed and user-directed, and the scheduled message asks the agent to draft rather than post automatically.

User impactThe workflow may continue checking the photo folder on a schedule until the user disables it.

RecommendationOnly enable the cron schedule if continuous monitoring is desired, and document how to pause or remove the scheduled job.

Agentic Supply Chain Vulnerabilities

SeverityLowConfidenceHighStatusNote

scripts/check-new-photos.sh

FOLDER_URL=$(jq -r '.googleDriveFolderUrl' "$CONFIG_FILE") ... gdown --folder "$FOLDER_URL" -O "$TEMP_DIR" --remaining-ok

The script depends on jq and gdown, while the registry metadata declares no required binaries and there is no install spec. The dependency use is purpose-aligned, but under-declared.

User impactUsers may need to install unpinned local tools before the skill works, and should ensure they install them from trusted sources.

RecommendationDeclare jq and gdown as requirements, provide trusted installation instructions, and pin package versions where practical.

Permission boundary

Checks whether tool use, credentials, dependencies, identity, account access, or inter-agent boundaries are broader than the stated purpose.

Identity and Privilege Abuse

SeverityMediumConfidenceHighStatusConcern

SKILL.md

Create a shared Google Drive folder for glasses photos: ... Share with "Anyone with link can view"

The setup grants broad link-based access to a folder intended to contain smart-glasses photos, which may include private scenes, people, or text. The artifact does not provide a privacy warning or a narrower permission option.

User impactAnyone who obtains the folder link could view the photos before they are reviewed or posted.

RecommendationUse the narrowest possible sharing setting, such as a private folder with an authenticated integration or a dedicated account. Put only photos intended for posting in this folder and disable broad link sharing if not required.

Sensitive data protection

Checks for exposed credentials, poisoned memory or context, unclear communication boundaries, or sensitive data that could leave the user's control.

Insecure Inter-Agent Communication

SeverityLowConfidenceMediumStatusNote

SKILL.md

For new photos, analyze with vision: ... Note any text, people, or notable elements

The workflow sends or exposes photo contents to a vision-capable model. This is core to the skill's purpose, but photos can contain sensitive people, locations, documents, or bystander information.

User impactPrivate image content may be processed in the AI context used for drafting posts.

RecommendationUse a model/provider with acceptable privacy controls, avoid placing sensitive or bystander-heavy images in the monitored folder, and review each image before approval.