Skillv1.0.0

ClawScan security

SupplyFlow — 供应链管理 · ClawHub's context-aware review of the artifact, metadata, and declared behavior.

Scanner verdict

BenignApr 29, 2026, 10:51 AM

Verdict: benign
Confidence: high
Model: gpt-5-mini
Summary: The skill's code, instructions, and requirements are consistent with a local supply‑chain analytics toolkit — no unexpected network calls, credentials, or install actions were found.
Guidance: This appears to be a straightforward local supply‑chain toolkit. You can install/run it if you trust the source, but note: (1) the repo does not enforce the described freemium/paid gating — all scripts are present and runnable locally; (2) several scripts accept a --file argument and will open whatever JSON path you pass, so do not provide paths to sensitive system files; (3) scripts run locally and print Markdown/JSON — review outputs before acting on procurement decisions; (4) if you require an actual paywall or remote service, verify with the publisher how paid features are enforced. If you want extra assurance, inspect the scripts yourself or run them in an isolated environment with non‑sensitive sample data.

Review Dimensions

Purpose & Capability: okThe name/description (supply‑chain management) matches the included scripts and reference docs: inventory tracking, supplier evaluation, POs, forecasting, risk and cost analysis. Required env/config/credentials are empty and the scripts operate on local JSON input, which is proportionate to the stated purpose.
Instruction Scope: noteSKILL.md instructs running the provided Python scripts with JSON arguments or files, which is expected. One mismatch: SKILL.md describes a freemium/paid tier, but nothing in the scripts enforces access control — all scripts are present and runnable locally. Scripts optionally read JSON files supplied by the user (e.g., --file), so care is needed about what file paths are provided, but the instructions do not direct the agent to read other system state or external endpoints.
Install Mechanism: okThere is no install spec (instruction-only installation) and no downloads or package installs. The risk is low; the repository includes Python scripts that will be executed if invoked, but nothing in the package installs arbitrary binaries or fetches code at runtime.
Credentials: okThe skill declares no required environment variables, credentials, or config paths. The scripts accept JSON input or file paths only and do not access environment secrets or network services, so requested permissions are minimal and consistent with functionality.
Persistence & Privilege: okThe skill is not always-enabled, does not claim elevated platform privileges, and does not modify other skills or global agent settings. It simply provides runnable local scripts and templates.