Back to skill
Skillv1.0.0
ClawScan security
draw-animal · ClawHub's context-aware review of the artifact, metadata, and declared behavior.
Scanner verdict
BenignMar 13, 2026, 9:27 AM
- Verdict
- benign
- Confidence
- high
- Model
- gpt-5-mini
- Summary
- The skill's code, instructions, and requirements are coherent with its stated purpose (generating a simple textual description of an animal); there are no unexpected credentials, installs, or network calls in the included files or runtime instructions.
- Guidance
- This skill appears to do exactly what it claims: run a small Python script to generate a textual animal description. It requires only python3 and does not request credentials or network access. If you plan to install it, consider: (1) review the included script yourself (it is short and local); (2) note that agent invocation will execute python3 and capture stdout — only allow if you trust the skill source; (3) functional nitpick: unknown animals are normalized to 'default' which may lead to odd wording, but this is a quality issue not a security one.
Review Dimensions
- Purpose & Capability
- okName/description say 'generate a text description of an animal picture via Python script' and the package includes a small Python script plus SKILL.md instructing the agent to run that script. Required binary is only python3, which is appropriate.
- Instruction Scope
- okSKILL.md limits runtime behavior to prompting for an animal and running the included script with --animal and optional --lang. It does not instruct reading unrelated files, accessing environment variables, or contacting external endpoints.
- Install Mechanism
- okNo install spec (instruction-only) and a single provided script. Nothing is downloaded or written to disk beyond running the included file with python3.
- Credentials
- okNo environment variables, credentials, or config paths are requested or used. The script performs only local logic and prints output to stdout.
- Persistence & Privilege
- okalways is false and there is no indication the skill modifies other skills or system configuration. It does not request persistent privileges.