Skillv1.1.0

ClawScan security

Packaging Designer · ClawHub's context-aware review of the artifact, metadata, and declared behavior.

BenignApr 24, 2026, 2:29 PM

Verdict: benign
Confidence: high
Model: gpt-5-mini
Summary: The skill's requirements, instructions, and included templates are coherent with its stated purpose (packaging and unboxing design); it is instruction-only and requests no credentials, installs, or unusual privileges.
Guidance: This skill is coherent and low-risk as an instruction/template pack for packaging design. Before use: (1) avoid uploading or sharing customer PII when doing the recommended live-ship tests (use team or tester addresses); (2) vet vendors before sending die-line/brand files and confirm any FSC/recycled claims with vendor certificates; (3) when creating QR landing pages or discount codes, secure those endpoints and ensure codes are monitored for abuse; (4) if you adapt templates to include order or fulfillment data, limit the data shared with vendors to what's necessary (avoid full customer lists). If you need the agent to generate or host QR landing pages or track codes, expect those steps to require separate services/credentials which are not provided by this skill.
Findings: [no_regex_findings] expected: The static scanner found no code or patterns to analyze — expected because this is an instruction-only skill composed of Markdown templates and guidance.

Purpose & Capability: okName, description, and all included templates (brief, dunnage guide, insert copy, transit tests, checklist) directly support packaging design and vendor hand-off. There are no unrelated environment variables, binaries, or config paths requested.
Instruction Scope: okSKILL.md stays within scope: it instructs how to gather product dimensions, select box types, specify dunnage, write insert cards, and validate via tests. It does not instruct the agent to read system files, access credentials, or transmit data to unexpected external endpoints. (Practical note: templates expect you to supply die-line files/brand assets and QR targets — those are normal hand-off items, not hidden exfiltration.)
Install Mechanism: okNo install spec and no code files — this is instruction-only, so nothing will be downloaded or written to disk by the skill itself.
Credentials: okThe skill declares no required environment variables, credentials, or config paths. Guidance about QR codes and tracking codes is operational (business/marketing) and does not demand secret keys from the user.
Persistence & Privilege: okalways is false and the skill does not request persistent or cross-skill privileges. It does not modify other skills or system-wide agent settings.