Back to skill
Skillv1.0.0
ClawScan security
npm · ClawHub's context-aware review of the artifact, metadata, and declared behavior.
Scanner verdict
BenignMar 14, 2026, 2:13 PM
- Verdict
- benign
- Confidence
- high
- Model
- gpt-5-mini
- Summary
- The skill is an instruction-only wrapper for using the system npm binary with release-safe defaults; its requirements and instructions are coherent with that purpose.
- Guidance
- This skill is an instruction-only helper that runs your system npm and node commands; it is internally consistent. Before installing: ensure you trust the source (it will run npm publish/dist-tag/version commands if invoked), confirm you want Node/npm installed via brew/apt on your machine, and never allow automated publish steps without explicit review — the skill references OTPs and npm auth but does not store or request secrets itself. If you use an automated agent, restrict its ability to run publish commands unless you want releases to be performed autonomously.
Review Dimensions
- Purpose & Capability
- okName/description match the declared requirements: the skill needs the npm binary and offers npm publish/version/dist-tag flows. The brew/apt install entries for node/npm are proportionate to the stated purpose.
- Instruction Scope
- okSKILL.md only instructs running npm/node commands and reading package.json (to check local version) — actions expected for package publishing and verification. It uses --userconfig "$(mktemp)" to avoid reading user npmrc and recommends fetching OTP from the 1password skill (an external credential retrieval workflow), which is reasonable. There are no instructions to read unrelated system files or exfiltrate data.
- Install Mechanism
- okInstall spec uses standard package managers (brew formula 'node' and apt package 'npm') which are appropriate and expected for ensuring npm is available. No remote downloads from arbitrary URLs or archive extraction are present.
- Credentials
- okThe skill declares no required environment variables or credentials. Commands reference user npm auth state (npm whoami, publish with OTP) which is natural for npm workflows; the skill does not demand unrelated secrets or config paths.
- Persistence & Privilege
- okalways is false and the skill is user-invocable. It does not request persistent or elevated platform privileges or modify other skills' configuration. Autonomous invocation is enabled by default but is typical for skills of this type.