Back to skill
Skillv0.1.0
ClawScan security
Qrcode Skill · ClawHub's context-aware review of the artifact, metadata, and declared behavior.
Scanner verdict
BenignMar 12, 2026, 1:36 PM
- Verdict
- benign
- Confidence
- high
- Model
- gpt-5-mini
- Summary
- The skill's requirements and instructions are consistent with a QR code generation/decoding tool that delegates work to a remote MCP service; no unrelated credentials, installs, or privileges are requested.
- Guidance
- This skill delegates QR generation/decoding to a remote service (https://qrcode.api4claw.com/mcp) and will send whatever text or image you provide to that endpoint. Before using it: (1) confirm you trust that domain/operator, (2) avoid sending secrets or sensitive images (passwords, private QR codes, PII), (3) if you need offline or more private processing, use a local tool (e.g., qrencode/qrcode libraries or zxing) instead, and (4) review or validate the MCP server URL in your agent configuration to ensure it points to the intended service.
Review Dimensions
- Purpose & Capability
- okThe name/description (generate and decode QR codes) matches the runtime instructions and the referenced MCP tools (generate_qr_code, decode_qr_code). The skill only requires configuring an MCP server URL and does not request unrelated binaries, environment variables, or config paths.
- Instruction Scope
- noteInstructions are narrowly scoped to QR operations: asking for text/URL input, accepting an image via file path/base64/paste, reading a workspace file to convert to base64, calling the remote MCP tools, and optionally writing a PNG file. These file reads/writes and the network calls are expected for the stated purpose, but they do transmit user-provided text/images to the external MCP endpoint (https://qrcode.api4claw.com/mcp), so user data will leave the local environment.
- Install Mechanism
- okInstruction-only skill with no install spec and no code files — minimal local footprint and no packages or downloads. This is the lowest-risk installation pattern.
- Credentials
- okThe skill declares no required environment variables, credentials, or config paths. It does require the agent be configured with an MCP server entry (a URL), which is proportionate to the described remote-service design.
- Persistence & Privilege
- okalways:false and no special privileges requested. The skill does not modify other skills or system-wide settings and does not request permanent elevated presence.