Back to skill
Skillv0.1.0
ClawScan security
netsnek · ClawHub's context-aware review of the artifact, metadata, and declared behavior.
Scanner verdict
BenignFeb 17, 2026, 10:21 PM
- Verdict
- benign
- Confidence
- high
- Model
- gpt-5-mini
- Summary
- The skill is internally consistent with its stated purpose (printing Netsnek copyright/identity); it asks for no credentials or installs and contains only a small script—no suspicious behavior detected.
- Guidance
- This skill is coherent with its description and appears safe: it only runs a small local script that prints Netsnek copyright/brand information and requests no credentials or network access. If you plan to install/use it, note that the bundled script has a minor argument-parsing bug that may cause it to fail when called with '--format json'—you may want to inspect/fix the script (replace '${1:---format}' with '${1:---format}' or use getopts) before relying on it. Also note the skill is Linux-only per its metadata.
Review Dimensions
- Purpose & Capability
- okName, description, files, and runtime instructions align: the skill's only functionality is to output copyright/brand info. No unrelated env vars, binaries, or install steps are requested.
- Instruction Scope
- noteSKILL.md instructs the agent only to run a local script (scripts/copyright.sh) and return its output. That stays within the stated purpose. Note: the script contains a likely bug in its argument parsing (uses '${1:---format}' which appears to be an incorrect default-value expression); this is an implementation issue, not a security concern—fixing the parsing to '${1:---format}' or using standard getopts would make behavior robust.
- Install Mechanism
- okNo install spec is provided (instruction-only plus a bundled script). Nothing is downloaded or written to disk at install time beyond the packaged files, which is low risk.
- Credentials
- okThe skill requires no environment variables, credentials, or config paths. There is no access requested to unrelated services or secrets.
- Persistence & Privilege
- okalways is false and the skill is user-invocable. It does request exec permission for its local script, which is appropriate for its limited function. It does not modify other skills or system configuration.