Back to skill
Skillv1.0.0
ClawScan security
Shenzhen · ClawHub's context-aware review of the artifact, metadata, and declared behavior.
Scanner verdict
BenignMar 3, 2026, 6:20 PM
- Verdict
- benign
- Confidence
- high
- Model
- gpt-5-mini
- Summary
- This is an instruction-only, read-only informational skill about Shenzhen that requests no credentials, installs, or system access and its behavior matches its description.
- Guidance
- This skill is essentially a static encyclopedia entry about Shenzhen and appears internally consistent — it asks for nothing and does nothing beyond presenting content. Before relying on specific figures or founder names, verify important facts from authoritative sources (official statistics, government or company sites), since provenance is 'unknown' and there may be inaccuracies or outdated numbers. If you later see a version that adds installs, env vars, or network calls, treat that as a new risk and re-evaluate before enabling it.
Review Dimensions
- Purpose & Capability
- okThe name and description promise a comprehensive introduction to Shenzhen and the SKILL.md contains static city-related content (history, economy, companies, transport, lifestyle). There are no unrelated requirements (no env vars, binaries, or config paths) that would be inconsistent with an informational guide.
- Instruction Scope
- okThe SKILL.md is static content (text, tables, facts). It does not instruct the agent to run commands, read files, access environment variables, call external endpoints, or transmit data. There is no scope creep in the runtime instructions.
- Install Mechanism
- okNo install specification or code files are present; this is instruction-only. That is the lowest-risk install posture (nothing is written to disk or downloaded).
- Credentials
- okThe skill declares no required environment variables, credentials, or config paths. There are no requests for secrets or unrelated service tokens, which is proportionate for a read-only informational skill.
- Persistence & Privilege
- okFlags are default (always: false, user-invocable: true, disable-model-invocation: false). The skill does not request persistent or elevated privileges and does not modify other skills or system settings.