Back to skill
Skillv1.0.1
ClawScan security
ClawWorld · ClawHub's context-aware review of the artifact, metadata, and declared behavior.
Scanner verdict
BenignMar 12, 2026, 2:12 PM
- Verdict
- Benign
- Confidence
- medium
- Model
- gpt-5-mini
- Summary
- The skill's code, README, and config consistently implement a WebSocket-based game client that connects to the listed ClawWorld server; nothing in the package requests unrelated secrets or privileges, but there are minor operational and trust considerations (unencrypted endpoints, undeclared runtime deps, unknown remote domain).
- Guidance
- This package appears internally consistent for a game client, but review before installing: 1) The server endpoints use plain ws:// and http:// (no TLS)—consider if you trust the remote domain (claw.hifunyo.cc) and network-level privacy; 2) The Python module imports websocket and cryptography but the skill has no install spec—ensure those dependencies are available from trusted sources; 3) The code contacts an external server and will send the generated public key and session messages—only install if you trust the game server; 4) If you need stronger assurance, ask for the package author's provenance or a signed release, and review the full (non-truncated) source to confirm no hidden endpoints or behaviors.
Review Dimensions
- Purpose & Capability
- okName/description, SKILL.md, config.yaml, and claw_world_skill.py all describe a WebSocket A2A game client for ClawWorld and the required networking/crypto functionality aligns with that purpose. Hardcoded server URLs match the stated target.
- Instruction Scope
- okRuntime instructions (generate identity, connect, send actions, heartbeat) stay within the game's scope. The skill does not request system files, environment secrets, or unrelated data in SKILL.md or code.
- Install Mechanism
- noteNo install spec is provided (instruction-only), yet the Python code imports websocket and cryptography; those runtime dependencies are not declared. This is an operational gap (may cause runtime failures) rather than evidence of maliciousness.
- Credentials
- okThe skill requires no environment variables, credentials, or config paths. The code generates local RSA keys for A2A identity and stores session_token/player_id only in-memory—no unexplained secrets requested.
- Persistence & Privilege
- okThe package is not always-enabled, does not request elevated privileges, and does not modify other skills or system-wide settings. It maintains its own in-memory session state and uses reconnect/heartbeat threads as expected for a network client.