Back to skill
Skillv1.0.44
ClawScan security
Openclaw Newbie Faq · ClawHub's context-aware review of the artifact, metadata, and declared behavior.
Scanner verdict
BenignMar 6, 2026, 4:17 AM
- Verdict
- benign
- Confidence
- high
- Model
- gpt-5-mini
- Summary
- The skill's code and runtime behavior match its stated purpose (a local static web FAQ served on a port) with no requests for secrets or external credentials, though there are a few minor operational/privacy considerations to be aware of.
- Guidance
- This skill appears to do what it says: serve a local static FAQ on a port. Before installing, consider: 1) network exposure — server.js calls server.listen(PORT) without binding to 127.0.0.1, so the service may accept remote connections if your host/network allows it; if you want strictly local access, modify server.listen to bind to '127.0.0.1' or use a firewall. 2) privacy — the frontend loads external resources (FontAwesome CDN, QR API, and image URLs hosted on GitHub); opening the page will cause your browser to contact those hosts (IP/referrer visible). If you need fully offline/local docs, remove external references. 3) persistence/logs — the provided entrypoint may run the server with nohup and write /tmp/newbie-faq.log; check and manage that file and background process if desired. 4) provenance — the SKILL.md and README reference a GitHub repo; if provenance matters, review the repo and audit the source locally before running. Otherwise the skill is internally coherent and not requesting excessive privileges or secrets.
Review Dimensions
- Purpose & Capability
- okThe name/description (OpenClaw newbie FAQ) align with the included files: a Node.js static web server (server.js) and frontend assets under web/. The index.js and skill.json both start that server, which is coherent with a local help/FAQ web UI.
- Instruction Scope
- noteRuntime instructions tell the agent/user to start a local web service and point to ~/.openclaw/workspace/skills/openclaw-newbie-faq; the code implements that. Minor mismatches: SKILL.md/README claim the page will 'automatically open in browser' though the code does not open a browser. The server serves only static files and does not collect credentials, but the web UI references external CDNs/APIs (FontAwesome CDN and an external QR image service) which will cause the user's browser to contact external endpoints when the page is viewed.
- Install Mechanism
- okNo install script downloads arbitrary code at install time; package.json has no external dependencies. The skill bundle contains the server and frontend source. No suspicious remote install URLs or archive extraction were used.
- Credentials
- okThe skill requires no environment variables or credentials. It optionally reads OPENCLAW_SKILL_PORT and uses the user's home directory to locate the skill files — both are reasonable for a local web service.
- Persistence & Privilege
- notealways:false and user-invocable (normal). The skill may be started as a background process (skill.json's shell entry uses nohup and redirects logs to /tmp/newbie-faq.log) which makes it persist across sessions; this is within scope but worth noting because it creates a long-running process and a log file under /tmp.