Skillv1.0.2

ClawScan security

Dpdp Compliance Assessment · ClawHub's context-aware review of the artifact, metadata, and declared behavior.

BenignMar 16, 2026, 3:10 AM

Verdict: benign
Confidence: high
Model: gpt-5-mini
Summary: The skill is internally consistent with its stated purpose (it calls a paid ToolWeb API to produce DPDP assessments), but it will send any user-provided organization/assessment data to a third party — don't transmit secrets or sensitive PII without consent and verifying the provider.
Guidance: This skill forwards the organization's assessment inputs to ToolWeb's API. Before installing or using it: (1) Verify the provider (portal.toolweb.in) and obtain the API key from their official portal; (2) Read their privacy/retention and pricing terms — understand how long assessment data is stored and whether it's used for analytics; (3) Never paste unnecessary sensitive secrets or raw PII into the assessment prompts (e.g., full customer records, passwords, private keys); test with non-sensitive example data first; (4) Treat TOOLWEB_API_KEY like any secret: store it securely, rotate it if compromised, and monitor API usage and billing; (5) If you need assessments without sending data off-site, prefer an offline/local tool or request a self-hosting option from the vendor; (6) Confirm TLS and the endpoint domain match the vendor homepage to avoid man-in-the-middle or typosquatting risks.
Findings: [no_code_files_or_regex_findings] expected: This is an instruction-only skill; the regex scanner had no code to analyze. This is expected for a skill that simply instructs the agent to call an external API.

Purpose & Capability: okThe name/description (DPDP compliance assessment) aligns with the declared requirements: it needs curl and a TOOLWEB_API_KEY to call https://portal.toolweb.in. Requesting a single API key for an external scoring service is proportional to the stated functionality.
Instruction Scope: noteSKILL.md explicitly requires the agent to always call the ToolWeb API and not answer from local knowledge. The workflow collects organization info and 41 control responses which will be transmitted to the external API. The instructions do not ask the agent to read local files or other environment variables, but they do force sending user-provided assessment data to a third party (no data-minimization or retention guidance is provided).
Install Mechanism: okInstruction-only skill with no install spec and no code files; lowest install risk. It requires curl be present but installs nothing on disk.
Credentials: okOnly TOOLWEB_API_KEY is required and is the stated primary credential for the ToolWeb service. No unrelated credentials, config paths, or broad secrets are requested.
Persistence & Privilege: okalways is false, model invocation is allowed (normal), and there is no claim of modifying other skills or system-wide settings. The skill does not request permanent installation or elevated privileges.