Back to skill
Skillv0.1.0
ClawScan security
Metadata Naming · ClawHub's context-aware review of the artifact, metadata, and declared behavior.
Scanner verdict
BenignMar 12, 2026, 5:20 AM
- Verdict
- benign
- Confidence
- high
- Model
- gpt-5-mini
- Summary
- This skill is an instruction-only filename/metadata naming standard; it contains no code, no installs, and requests no credentials or system access, and its behavior matches its description.
- Guidance
- This is essentially a style guide for filenames and folders — low risk. You can install or invoke it without exposing credentials or installing software. Before using, verify the naming rules fit your existing workflows (e.g., if you rely on non-ASCII names or spaces, the 'strict mode' defaults may require changes). If you need automation that enforces these rules, expect to write or add tooling yourself; the skill does not include enforcement code.
Review Dimensions
- Purpose & Capability
- okThe name and description match the SKILL.md and reference: guidance on filename metadata and naming rules. No unrelated capabilities, binaries, or credentials are requested.
- Instruction Scope
- okInstructions are limited to naming conventions and examples. They do not instruct the agent to read files, environment variables, external endpoints, or perform any system operations.
- Install Mechanism
- okNo install spec or code files; this is instruction-only, so nothing is written to disk or downloaded during install.
- Credentials
- okThe skill declares no required environment variables, credentials, or config paths. The guidance does not reference secrets or external services.
- Persistence & Privilege
- okFlags show always:false and normal invocation. The skill does not request persistent system presence or elevated privileges.