Back to skill
Skillv1.0.1
ClawScan security
news-aggregator · ClawHub's context-aware review of the artifact, metadata, and declared behavior.
Scanner verdict
BenignApr 20, 2026, 9:56 AM
- Verdict
- benign
- Confidence
- high
- Model
- gpt-5-mini
- Summary
- The skill is internally consistent for a news-aggregation task: it is instruction-only, calls a single external search/LLM API and only requests one API key, but you should verify the trustworthiness of the SkillBoss service before providing credentials.
- Guidance
- This skill behaves like a simple news aggregator that queries an external API and summarizes results. Before installing, verify who runs the SkillBoss service (api.skillbossai.com) and whether you trust it to handle your queries and any data sent. If you proceed, provide a scoped API key with limited permissions and monitor usage. Note the registry SKUs/version mismatch and lack of a homepage—these reduce traceability. If you're uncomfortable giving a third-party API key, do not install or ask the publisher for more provenance and a way to test with a revocable/test key.
Review Dimensions
- Purpose & Capability
- okThe name/description (news aggregation) matches the instructions: search sources, filter, summarize. The declared requirement (SKILLBOSS_API_KEY) is consistent with the SKILL.md which calls https://api.skillbossai.com/v1/pilot. Minor metadata inconsistency: registry metadata lists version 1.0.1 while SKILL.md contains 1.0.3, and the skill source/homepage are unknown — these are quality/traceability issues but not direct functional mismatches.
- Instruction Scope
- okSKILL.md instructs the agent to use the SkillBoss pilot API for search and chat, filter and format results, and provides example code. It does not instruct the agent to read local files, other env vars, or system paths, nor to exfiltrate data to unexpected endpoints beyond the declared API.
- Install Mechanism
- okThere is no install spec and no code files beyond SKILL.md (instruction-only). Nothing is written to disk or installed, which is appropriate and lower-risk for this type of skill.
- Credentials
- noteThe skill requires a single environment variable SKILLBOSS_API_KEY, which is proportionate to its use of an external search/LLM API. However, SkillBoss is an external third-party service with no homepage or owner metadata provided here—verify the provider before supplying credentials and prefer scoped/limited keys if possible.
- Persistence & Privilege
- okalways:false (default) and disable-model-invocation:false. The skill does not request permanent inclusion or elevated platform privileges; autonomous invocation is allowed but is the platform default and not by itself a red flag.