Back to skill
Skillv1.0.6
ClawScan security
Skill Hunter · ClawHub's context-aware review of the artifact, metadata, and declared behavior.
Scanner verdict
BenignFeb 25, 2026, 9:30 PM
- Verdict
- benign
- Confidence
- high
- Model
- gpt-5-mini
- Summary
- Skill Hunter’s claims match its instructions and requirements: it is an instruction-only discovery/vetting helper that uses ClawHub public APIs and requests no credentials or installs.
- Guidance
- This skill appears coherent and low-risk: it only queries ClawHub public APIs and provides vetting guidance. Before using it, confirm you trust the clawhub.ai domain and your network policy for allowing outbound requests. When following its recommendations to inspect or install other skills, always: (1) read the target skill's SKILL.md and file list, (2) refuse skills that ask you to run 'curl | bash' or install packages from unknown hosts, and (3) avoid granting credentials unless you understand exactly why they are needed. If you want extra assurance, verify the author identity and inspect downloaded skill files locally before running them.
Review Dimensions
- Purpose & Capability
- okName/description (search, vet, install helper) align with the files and instructions: all example commands call ClawHub public endpoints and the manifest declares network permission. No unexpected credentials, binaries, or config paths are requested.
- Instruction Scope
- okSKILL.md and instructions.md confine actions to reading ClawHub endpoints, inspecting remote SKILL.md files, and advising human-driven install steps (clawhub install). There are no instructions to read local secrets, run arbitrary local scripts, or exfiltrate data beyond search queries to clawhub.ai.
- Install Mechanism
- okThis is an instruction-only skill with no install spec and no code files to execute; lowest-risk installation model (nothing is written to disk by the skill itself).
- Credentials
- okNo environment variables, credentials, or config paths are required. The guidance describes how to evaluate other skills that might request credentials, but Skill Hunter itself does not request them.
- Persistence & Privilege
- okalways is false and the skill does not request elevated or persistent system privileges. It only documents human-driven use of the ClawHub CLI and API; it does not modify other skills or global agent settings.