v1.0.3

Academic Composer Upload

BenignClawScan verdict for this skill. Analyzed May 1, 2026, 7:53 AM.

Analysis

This skill appears coherent and disclosed, with purpose-aligned local Python analysis and Semantic Scholar search, but users should notice the remote-LLM data flow, dependency setup, and academic-integrity implications.

GuidanceBefore installing, be comfortable running the Python dependency setup and local scripts. Semantic Scholar receives search keywords, and your configured LLM provider may receive essay drafts. Verify citations yourself, do not submit generated text as your own work, and delete any temporary essay files if the content is sensitive.

Findings (4)

Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.

Abnormal behavior control

Checks for instructions or behavior that redirect the agent, misuse tools, execute unexpected code, cascade across systems, exploit user trust, or continue outside the intended task.

Tool Misuse and Exploitation

SeverityLowConfidenceHighStatusNote

SECURITY.md

`shell` | Runs `scholar.py` ... `pipeline.py` ... `measure.py`; `network` | `scholar.py` queries `api.semanticscholar.org`

The skill intentionally gives the agent local command execution and network access, but the artifacts disclose these uses and tie them to source search and local style analysis.

User impactThe agent may run local Python scripts and send search keywords to Semantic Scholar.

RecommendationAllow these commands only for intended writing tasks, and review file paths and search terms before use.

Agentic Supply Chain Vulnerabilities

SeverityLowConfidenceHighStatusNote

requirements.txt

spacy>=3.7.0

The setup uses a broadly versioned Python dependency; this is normal for the local writing-analysis feature but means users rely on their Python package source and environment.

User impactInstalling dependencies could pull newer package versions from the user's configured package index.

RecommendationInstall in a virtual environment and use trusted package sources; pin versions if reproducibility is important.

Human-Agent Trust Exploitation

SeverityInfoConfidenceHighStatusNote

SKILL.md

expand into fully cited essays ... If style score > 15: rewrite flagged passages to improve naturalness ... NOT intended for submitting AI-generated content as one's own

The skill can produce polished academic drafts, but the artifacts also include an explicit academic-integrity warning, making this a disclosed misuse risk rather than deceptive behavior.

User impactUsers could wrongly assume the generated essay is safe to submit or that citations are automatically perfect.

RecommendationUse it for research, outlining, and drafting support; verify all citations and follow the relevant academic-integrity policy.

Sensitive data protection

Checks for exposed credentials, poisoned memory or context, unclear communication boundaries, or sensitive data that could leave the user's control.

Insecure Inter-Agent Communication

SeverityLowConfidenceHighStatusNote

SECURITY.md

If the agent uses a remote model provider ... essay content will be transmitted to that provider as part of the LLM conversation.

The skill clearly discloses that essay generation and rewriting happen through the host LLM, which may be remote and may receive draft content.

User impactPrivate essay drafts or prompts may leave the device if the user's agent is configured to use a cloud model.

RecommendationCheck the agent's model-provider settings before using the skill with sensitive drafts.