Back to skill
Skillv1.0.0
ClawScan security
demo · ClawHub's context-aware review of the artifact, metadata, and declared behavior.
Scanner verdict
BenignMar 4, 2026, 8:17 AM
- Verdict
- benign
- Confidence
- high
- Model
- gpt-5-mini
- Summary
- The skill is an instruction-only summarizer that is internally consistent with its description and requests no extra permissions, installs, or credentials.
- Guidance
- This skill is instruction-only and appears to do exactly what it says: summarize text into Markdown. It requests no credentials or installs. Before using it, avoid submitting sensitive secrets or personally identifiable data in the content you provide (the skill will read whatever you give it). If you need summaries for confidential documents, prefer tools with audited data-handling guarantees. Otherwise, this demo skill is appropriate for ad-hoc technical summarization.
Review Dimensions
- Purpose & Capability
- okThe name/description (document summarizer) matches the SKILL.md instructions. The skill requires no binaries, env vars, or config paths — proportional to a text summarization task.
- Instruction Scope
- okRuntime instructions are narrowly scoped: read the provided content and produce structured Markdown (Summary, Key Points, Risks). The instructions do not ask the agent to read system files, environment variables, or send data to external endpoints.
- Install Mechanism
- okNo install spec and no code files are present (instruction-only), so nothing is written to disk or downloaded during install.
- Credentials
- okThe skill declares no required environment variables, credentials, or config paths. There is no apparent need for additional secrets or external service access.
- Persistence & Privilege
- okalways is false (not force-included). The skill can be invoked autonomously by agents (default), which is expected for a skill; it does not request elevated persistence or modify other skills' configs.