Back to skill
Skillv1.0.0
ClawScan security
Audience Builder · ClawHub's context-aware review of the artifact, metadata, and declared behavior.
Scanner verdict
BenignApr 21, 2026, 1:14 AM
- Verdict
- benign
- Confidence
- medium
- Model
- gpt-5-mini
- Summary
- The skill's requirements and instructions are internally consistent with its stated purpose of designing ad audiences; it asks for customer and event data (sensitive) but does not request unrelated credentials or install code — handle any PII carefully before use.
- Guidance
- This skill appears to do what it says, but it depends on sensitive customer and event data. Before using it: (1) avoid uploading raw emails or PII — use hashed customer identifiers (per platform requirements) or aggregated summaries where possible; (2) confirm you have legal consent to share customer data and check your privacy policy; (3) test with anonymized or synthetic data first; (4) be aware the skill is manual-only (it won't push audiences to ad platforms), so follow the provided setup instructions in each platform UI; and (5) review any outputs carefully for overly broad exclusions or potential policy-sensitive targeting and do not paste full customer lists into logs or chat history unless you trust the agent's data handling policy.
Review Dimensions
- Purpose & Capability
- okThe name/description (audience design for Meta, TikTok, Google) matches the SKILL.md: it asks for customer files, pixel event volumes, catalog structure, and ad spend—data that is legitimately needed to produce audience maps and budget splits. It does not request unrelated credentials or tools.
- Instruction Scope
- noteSKILL.md instructs the agent to produce platform-by-platform audience maps and exclusion rules and explicitly states it does not connect to ad platform APIs. The instructions do not direct the agent to read system files or fetch external secrets, but they do rely on user-supplied sensitive inputs (customer emails/purchase history). The skill does not discuss how to handle, hash, or anonymize that data.
- Install Mechanism
- okInstruction-only skill with no install spec and no code files; nothing will be written to disk or pulled from external URLs by the skill itself.
- Credentials
- noteThe skill requests no environment variables or credentials, which is appropriate. However, it requires user-provided customer files containing PII (emails, purchase history) and pixel/event volumes. Those inputs are proportional to the advertised function but are sensitive — the SKILL.md does not provide guidance on hashing, stripping PII, or minimizing data shared.
- Persistence & Privilege
- okalways:false and no install means the skill does not request persistent system presence or elevated privileges. It will not autonomously install components or modify other skills' configs.