Skillv2.1.0

ClawScan security

Spotlight · ClawHub's context-aware review of the artifact, metadata, and declared behavior.

Scanner verdict

BenignMar 25, 2026, 10:42 AM

Verdict: benign
Confidence: high
Model: gpt-5-mini
Summary: The skill is internally consistent with its stated purpose (macOS Spotlight search): it contains a simple, local shell script that calls mdfind and the documentation warns about privacy and sudo — nothing indicates unexpected network access, credential requests, or privilege escalation.
Guidance: This skill appears to do what it says: a simple local Spotlight search helper. Before installing, ensure you'll run it on macOS (mdfind must be available), and be aware it will return full file paths from directories you specify — do not ask the agent to automatically open/read files without confirming with you first. Also note the registry metadata could be improved to declare macOS as the required platform and to document the dependency on mdfind/mdutil.

Review Dimensions

Purpose & Capability: noteThe skill's name/description and included script consistently implement macOS Spotlight searches (uses mdfind -onlyin). Minor inconsistency: the registry metadata does not declare an OS restriction or required binaries, but the script requires macOS tools (mdfind) to work. This is an implementation/metadata omission rather than a functional mismatch.
Instruction Scope: okSKILL.md instructs the agent to run the provided script, present file paths, and only read file contents with explicit user permission. The script itself only enumerates Spotlight results from a user-specified directory and prints paths/types/sizes — it does not read file contents, call remote endpoints, or access unrelated system files. It does print full file paths (which can reveal sensitive locations) but that is expected for a search tool and is emphasized in the documentation.
Install Mechanism: okNo install spec; this is instruction-only with an included shell script. No downloads or external installers are invoked. Risk from installation is minimal because nothing is written/downloaded automatically.
Credentials: okThe skill requests no environment variables, credentials, or config paths. This is proportional to its function. Note: because it outputs full file paths, using it will surface local path information — the SKILL.md appropriately instructs to obtain user consent before reading files.
Persistence & Privilege: okalways:false and no special privileges are requested. The skill does not attempt to persist, modify other skills, or require elevated privileges. The documentation explicitly warns against running sudo commands.