Skillv0.1.1

ClawScan security

Miromind · ClawHub's context-aware review of the artifact, metadata, and declared behavior.

Scanner verdict

BenignMar 19, 2026, 6:20 PM

Verdict: benign
Confidence: high
Model: gpt-5-mini
Summary: The skill's requirements and runtime instructions are coherent with its stated purpose: it uses browser automation to log into dr.miromind.ai with the provided MiroMind account and run research sessions, so requesting playwright-mcp and account credentials is expected.
Guidance: This skill appears to do what it claims: it automates the MiroMind website using a browser automation skill and needs your MiroMind email and password to log in. Before installing: (1) Understand you will be storing account credentials in OpenClaw configuration (the README suggests placing the password in openclaw.json), which may be stored in plaintext — consider using a dedicated account or verify OpenClaw's secret management. (2) Confirm you trust https://dr.miromind.ai and are comfortable allowing an automated session to log in and extract content. (3) Verify the playwright-mcp skill you install is from a trusted source. (4) If you prefer not to store passwords, check whether the service offers API tokens or OAuth alternatives. If any of these are unacceptable, do not install or use the skill.

Review Dimensions

Purpose & Capability: okName/description (MiroMind Deep Research via MiroThinker web UI) match the declared requirements: playwright-mcp for browser automation and MIROMIND_EMAIL/MIROMIND_PASSWORD for login. Nothing requested appears unrelated to the stated purpose.
Instruction Scope: noteSKILL.md instructs spawning a sub-agent, using playwright to navigate to https://dr.miromind.ai/, check/login using the provided credentials, submit queries via a URL parameter, poll for completion, extract page text, and save a local Markdown report. Those steps are within scope. Note: it explicitly tells users to store account password in openclaw.json (plaintext), and the skill will write files to the user's workspace and return sub-agent sessionKey/chatUrl — these are expected but are privacy/security considerations for the user.
Install Mechanism: okThis is an instruction-only skill with no install spec; it depends on the separate playwright-mcp skill and Playwright browser runtime (npx playwright install chromium). No arbitrary remote downloads or unknown installers are included in this package.
Credentials: noteOnly two env vars are required (MIROMIND_EMAIL and MIROMIND_PASSWORD), which is proportionate because the skill needs to log into the MiroMind website. Caveat: the guidance recommends putting the password into openclaw.json env in plaintext — this is a user-config choice that increases risk if the config file is not protected.
Persistence & Privilege: okThe skill is not always-enabled and is user-invocable. It spawns isolated sub-agents for tasks and writes reports to a local workspace path under the skill's directory; it does not request system-wide privileges or modify other skills' configs.