research Decision
Security checks across static analysis, malware telemetry, and agentic risk
Overview
This is a coherent instruction-only web research skill, with a minor note that it may run simple local version or dependency checks when relevant.
This skill appears safe for normal use as a research and troubleshooting helper. Before installing, note that it encourages the agent to perform quick read-only checks like version or dependency listings, so use normal caution if your local environment contains sensitive project information.
Static analysis
No static analysis findings were reported for this release.
VirusTotal
VirusTotal findings are pending for this skill version.
Risk analysis
Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.
When used in a local technical project, the agent may read version, dependency, or environment information and include it in its report.
The skill instructs the agent to run quick local verification commands such as version or dependency checks. This is aligned with technical troubleshooting, but it means the agent may inspect local project or environment details.
对于版本核查、依赖检查、环境验证等可以快速自动完成的事项,先自己跑一遍命令...不要让用户自己动手。
Use it in projects where read-only local diagnostics are acceptable, and review any proposed command before allowing it in sensitive repositories or production environments.