ClawHub
Back to skill
v0.1.0

Find Docs

BenignClawScan verdict for this skill. Analyzed May 1, 2026, 7:56 AM.

Analysis

This is a coherent documentation-lookup skill, but users should notice that it relies on an external npm CLI, may send queries to Context7, and optionally uses Context7 credentials.

GuidanceThis skill appears safe for its stated purpose. Before installing or using it, be comfortable with running the ctx7 npm CLI, avoid sending secrets or proprietary code in queries, and only authenticate with Context7 if you need higher rate limits.

Findings (3)

Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.

Abnormal behavior control

Checks for instructions or behavior that redirect the agent, misuse tools, execute unexpected code, cascade across systems, exploit user trust, or continue outside the intended task.

Agentic Supply Chain Vulnerabilities
SeverityLowConfidenceHighStatusNote
SKILL.md
npm install -g ctx7@latest

The skill suggests installing the latest external npm package, which is purpose-aligned for using Context7 but is unpinned and can change over time.

User impactA future npm package update could change the behavior of the CLI used by the skill.
RecommendationInstall only from the expected npm source, consider using npx or a pinned version when reproducibility matters, and approve global installs deliberately.
Permission boundary

Checks whether tool use, credentials, dependencies, identity, account access, or inter-agent boundaries are broader than the stated purpose.

Identity and Privilege Abuse
SeverityInfoConfidenceHighStatusNote
SKILL.md
export CONTEXT7_API_KEY=your_key

The skill optionally supports a Context7 API key or OAuth login for higher rate limits, which is expected for this service but involves user credentials.

User impactUsing authentication grants the CLI access to the user's Context7 account or quota.
RecommendationUse a dedicated, least-privilege API key where possible and revoke it if it is no longer needed.
Sensitive data protection

Checks for exposed credentials, poisoned memory or context, unclear communication boundaries, or sensitive data that could leave the user's control.

Insecure Inter-Agent Communication
SeverityLowConfidenceHighStatusNote
SKILL.md
Use the user's full question as the query when possible

The skill sends user-derived documentation queries through Context7; it also warns not to include secrets or proprietary data, which makes the data flow disclosed but still worth noticing.

User impactSensitive details included in a technical question could be sent to the external documentation service.
RecommendationRedact API keys, passwords, private customer data, and proprietary code before allowing the skill to run documentation searches.