ts3
Security checks across static analysis, malware telemetry, and agentic risk
Overview
The artifacts show a small, disclosed shell-helper skill with no sensitive data access, persistence, networking, or destructive behavior.
This appears safe to install from the provided artifacts. The only notable point is that it includes an executable Bash script, so review it again if future versions add real file generation or server setup behavior.
Static analysis
No static analysis findings were reported for this release.
VirusTotal
66/66 vendors flagged this skill as clean.
Risk analysis
Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.
The skill may run a local script when asked, but the included script is limited to console output in these artifacts.
The skill includes a local Bash helper invoked by the documented server commands; in the provided artifact, it only prints status messages and does not write files, make network calls, or read secrets.
#!/usr/bin/env bash set -e ... echo "Generating routes..." ... echo "Health check endpoint configured"
Review the script before running it and keep executions limited to the documented options.