Skillv1.0.1

ClawScan security

Checkout Friction Audit · ClawHub's context-aware review of the artifact, metadata, and declared behavior.

Scanner verdict

BenignMar 18, 2026, 1:01 PM

Verdict: benign
Confidence: high
Model: gpt-5-mini
Summary: The skill is an instruction-only conversion audit checklist that is internally consistent with no unexpected installs, credentials, or opaque behavior; it mainly relies on the platform's browser and user-provided artifacts.
Guidance: This skill is a checklist/instruction set and appears coherent for auditing checkout flows. Before using it: (1) Provide only the minimum data needed (staging URLs, anonymized complaints, screenshots) and avoid sharing real customer PII unless necessary. (2) Grant Browser Relay or access to a local Chrome session only with explicit consent and awareness that the agent will inspect pages you provide. (3) If you expect the skill to create or modify sprint-board items, confirm what integration will be used and supply credentials only through the platform's secure integration mechanism — the skill itself does not request or store those credentials. (4) Note the license: non-commercial CC BY-NC-SA; obtain a commercial license from Razestar if you plan to use it commercially.

Review Dimensions

Purpose & Capability: okName, description, and instructions all focus on auditing checkout friction. There are no unrelated environment variables, binaries, or install steps requested that would be disproportionate to a conversion-audit workflow.
Instruction Scope: noteInstructions recommend using the platform-managed browser and Browser Relay for hands-on inspection and to use user-provided funnel notes/screenshots. This is appropriate for the purpose but does imply the agent may access live pages or a user's browser session — the skill text does require explicit user consent for Browser Relay, which is good. The guidance to 'push fixes into sprint board' is high-level and would require separate integration credentials if automated; the SKILL.md does not declare any such env vars or endpoints.
Install Mechanism: okInstruction-only skill with no install spec and no code files, so nothing is written to disk or downloaded. This is low risk and proportionate to the described functionality.
Credentials: okNo required environment variables, credentials, or config paths are declared. The skill's actions (inspect pages, review user-provided artifacts) do not require secrets. Any integration that would modify sprint boards or external services would need separate explicit credentials not requested here.
Persistence & Privilege: okalways is false and autonomous invocation is allowed (platform default). There is no request to modify other skills or system-wide settings. No unusual persistence or elevated privileges are requested.