ClawHub
Back to skill
v1.0.1

Skill Optimizer

BenignClawScan verdict for this skill. Analyzed May 1, 2026, 7:54 AM.

Analysis

The skill is mostly a coherent skill-quality checker, with some low-level notes around broad local tool permissions, helper scripts, and incomplete referenced resources.

GuidanceThis appears safe to install if you want a local skill-quality checker. Before use, be aware that it can run local Python scripts and inspect skill folders; provide explicit target paths when possible and review any generated reports or suggested edits before applying them.

Findings (3)

Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.

Abnormal behavior control

Checks for instructions or behavior that redirect the agent, misuse tools, execute unexpected code, cascade across systems, exploit user trust, or continue outside the intended task.

Tool Misuse and Exploitation
SeverityLowConfidenceHighStatusNote
SKILL.md
allowed-tools: [Bash, Read, Write, Exec]

The skill explicitly allows local command execution and file access tools. This is coherent with running local checker scripts, but it is broader authority than a purely advisory text-only skill would need.

User impactThe agent may read local skill files and run helper scripts while evaluating skills.
RecommendationUse it on skill directories you intend to inspect, and review/approve any proposed file changes or report-writing actions.
Tool Misuse and Exploitation
SeverityInfoConfidenceHighStatusNote
scripts/check-templates.py
skills_root = '/home/admin/.openclaw/workspace/betterlife/skills'
results = check_all_skills(skills_root)

When run without an argument, the helper script scans a hardcoded local skills directory. This is consistent with batch skill validation, but the default scope may be broader than a user expects.

User impactRunning the script without a target may inspect multiple local skill folders instead of one selected skill.
RecommendationPass an explicit skill directory when checking a single skill, and confirm the batch path before using default batch behavior.
Agentic Supply Chain Vulnerabilities
SeverityInfoConfidenceHighStatusNote
SKILL.md
- `references/examples.md` - 评估示例
- `references/scoring.md` - 评分标准详解

The SKILL.md references documentation files that are not present in the supplied file manifest, which only includes references/checklist.md plus the scripts.

User impactSome referenced guidance may be missing, making the package less complete and potentially confusing during use.
RecommendationVerify the package contents before relying on the referenced examples or scoring documentation.