Skillv1.0.2

ClawScan security

Developer Utils · ClawHub's context-aware review of the artifact, metadata, and declared behavior.

Scanner verdict

BenignMar 15, 2026, 5:36 AM

Verdict: Benign
Confidence: medium
Model: gpt-5-mini
Summary: The skill is an instruction-only developer toolkit whose requested resources and instructions match its stated purpose, but it executes local shell/Python snippets and network utilities so you should only run it from a trusted environment and avoid feeding secrets to it.
Guidance: This is an instruction-only developer toolkit that provides shell and Python snippets for many useful tasks. It does not request credentials or install software, which makes its footprint small and coherent with its purpose. However: (1) the SKILL.md runs local commands and Python code — do not run these examples on systems with sensitive data or secrets; (2) network utilities may perform outbound requests (IP lookup, HTTP test, port scan) — be mindful of privacy and target scopes; (3) crypto examples will need keys if you test encryption/decryption — never paste production secrets into examples from untrusted sources; (4) because the file bundle is large and partially truncated in the review, consider inspecting the full SKILL.md yourself before use. If you want stronger safety, only invoke tools manually (user-invoked) and avoid enabling autonomous invocation for this skill.

Review Dimensions

Purpose & Capability: okName/description (developer utilities: encoding, formatting, regex, crypto, network, etc.) align with the SKILL.md content. The examples and tools shown are consistent with a developer toolbox and do not request unrelated credentials, binaries, or config paths.
Instruction Scope: noteSKILL.md is instruction-only and contains many runnable shell/python snippets (text processing, encoding, JWT decode, difflib, base64, URL/hex conversions) and mentions network tools (IP lookup, HTTP test, port check). These instructions will execute code locally and may perform outbound network requests depending on which examples are used. The file is truncated in the provided bundle, so there may be additional network or I/O examples not visible here.
Install Mechanism: okNo install spec and no code files — lowest-risk install model. Nothing is downloaded or written to disk by an installer in the bundle.
Credentials: okThe skill declares no required environment variables, credentials, or config paths. The examples do not request secrets; however, some crypto examples (AES/RSA/HMAC) will require keys if you run them, so avoid supplying sensitive keys into example runs unless you trust the code.
Persistence & Privilege: notealways is false (normal). disable-model-invocation is false (normal), so the agent may invoke the skill autonomously per platform defaults. This is expected for skills, but if you are concerned about automation executing local commands or network tests, restrict autonomous invocation at the platform level.