Back to skill
Skillv1.0.2
ClawScan security
Agentsecly Ai Agent Security · ClawHub's context-aware review of the artifact, metadata, and declared behavior.
Scanner verdict
BenignMar 16, 2026, 3:09 AM
- Verdict
- benign
- Confidence
- high
- Model
- gpt-5-mini
- Summary
- The skill's requirements and runtime instructions are internally consistent with its stated purpose (it just proxies assessment data to ToolWeb's API), but it will send user-provided threat details to an external service so you should consider privacy and billing implications before using it.
- Guidance
- This skill behaves like a thin client for ToolWeb.in: it will send the threat title/description, environment details, and other assessment fields to https://portal.toolweb.in/apis/security/agentsecly using your TOOLWEB_API_KEY. Before installing, confirm you trust ToolWeb for handling potentially sensitive data (threat scenarios often include secrets or PII), check the pricing/billing model, and consider redacting or anonymizing any confidential details. Keep the API key scoped and rotated, monitor usage/billing, and avoid setting the skill to always-run if you want to limit accidental data transmission.
Review Dimensions
- Purpose & Capability
- okName/description align with what the skill asks for: it requires an API key for portal.toolweb.in and curl, and the SKILL.md explicitly instructs the agent to call that API for advisory generation. The required env var TOOLWEB_API_KEY is appropriate for a third-party API integration.
- Instruction Scope
- noteThe instructions mandate always calling the external ToolWeb API and explicitly forbid answering from local knowledge. This keeps behavior within the claimed purpose (delegated, proprietary scoring), but it also means any user-provided threatDescription or environment details will be transmitted to the third-party service. No instructions reference unrelated files, system paths, or additional environment variables.
- Install Mechanism
- okInstruction-only skill with no install spec or code files; lowest install risk. It requires curl to be available but does not fetch or write code from remote URLs.
- Credentials
- okOnly one credential is required (TOOLWEB_API_KEY) and it is the primary credential for calling the declared API. There are no unrelated or excessive secrets requested.
- Persistence & Privilege
- okalways is false and the skill is user-invocable (normal). The skill does not request elevated platform privileges or persistent system modifications.