Skillv1.0.0

ClawScan security

wot-ui-plus · ClawHub's context-aware review of the artifact, metadata, and declared behavior.

BenignApr 24, 2026, 12:36 PM

Verdict: benign
Confidence: high
Model: gpt-5-mini
Summary: This is an instruction-only documentation skill that bundles markdown component docs and tells the agent to answer questions using those files — its requirements and behavior match its stated purpose.
Guidance: This skill appears internally coherent and low-risk: it simply bundles component docs and instructs the agent to answer from them. Before installing, consider: 1) Source provenance — the skill's homepage is absent and the owner is an opaque ID; if you require trust guarantees, ask the author or prefer an official repo. 2) Review included docs — some example snippets reference external image URLs (including raw IPs like 106.55.153.212); the skill may reproduce those URLs in answers, so check for any private or unexpected endpoints in the references. 3) Permissions — the skill requests no env vars or installs, so avoid granting extra runtime permissions (filesystem, network access, secrets) unless you trust the source. 4) If you need higher assurance, inspect a few representative files in references/ for sensitive content or replace/remove any unwanted external links before use.

Purpose & Capability: okThe name/description (wot-ui-plus component usage guide) matches the actual contents: a SKILL.md plus a large references/ directory of component docs. The skill requests no binaries, env vars, or installs, which is proportionate for a docs/QA skill.
Instruction Scope: noteSKILL.md directs the agent to locate and answer from files in references/ and to prefer concise, copy-pasteable examples. It does not instruct reading unrelated system files or sending data to external endpoints. Note: some reference files contain example image URLs (including raw IPs like 106.55.153.212 and external CDN links); the skill will surface those URLs in answers if present in the docs, but the skill instructions do not autonomously fetch or exfiltrate data.
Install Mechanism: okNo install spec and no code files — instruction-only. This is the lowest-risk installation pattern (nothing is written to disk or downloaded at install time).
Credentials: okThe skill declares no required environment variables, credentials, or config paths. That aligns with its purpose as an offline documentation/answering skill.
Persistence & Privilege: okalways is false and the skill does not request elevated or persistent privileges. Autonomous invocation (default) is allowed but is normal for skills and not combined here with other red flags.