v1.1.20

WP Multitool — WordPress Optimization Toolkit

BenignClawScan verdict for this skill. Analyzed May 1, 2026, 5:23 AM.

Analysis

This is a coherent WordPress WP-CLI helper; its cleanup and configuration commands are powerful but disclosed and require user confirmation.

GuidanceUse diagnostics freely on the intended WordPress site, but before approving cleanup or wp-config changes, verify the exact command, site path/table prefix, and backup status. The paid WP Multitool plugin is optional for plugin-specific commands; do not authorize purchases or installations unless you intend to use it.

Findings (2)

Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.

Abnormal behavior control

Checks for instructions or behavior that redirect the agent, misuse tools, execute unexpected code, cascade across systems, exploit user trust, or continue outside the intended task.

Tool Misuse and Exploitation

SeverityMediumConfidenceHighStatusNote

SKILL.md

Always confirm with the user before executing: - `wp transient delete` ... - `wp post delete --force` ... - `wp db optimize` ... - `wp config set`

These WP-CLI commands can delete database rows, permanently remove revisions/posts, lock/optimize tables, or change wp-config.php. The artifact explicitly marks them as requiring confirmation, so this is a user-awareness note rather than a concern.

User impactIf approved on the wrong site or without a backup, cleanup or config commands could remove data or change site behavior.

RecommendationReview the exact command and target site before approval, and export or back up the database before destructive fixes.

Permission boundary

Checks whether tool use, credentials, dependencies, identity, account access, or inter-agent boundaries are broader than the stated purpose.

Identity and Privilege Abuse

SeverityMediumConfidenceHighStatusNote

SKILL.md

"permissions":{"read":true,"write":true,"write_operations":["delete_transients","delete_revisions","delete_orphaned_meta","optimize_tables","modify_wp_config","modify_plugin_options"],"requires_user_confirmation":true}

The skill declares WordPress read/write authority and specific mutation operations. This authority is aligned with the toolkit's purpose and is disclosed with a confirmation requirement.

User impactThe agent may act with the effective privileges of the WP-CLI user for the connected WordPress installation.

RecommendationRun it only from the intended WordPress environment, use a least-privileged shell/account where practical, and confirm write operations deliberately.