Back to skill
Skillv1.0.0
ClawScan security
Agent Companion · ClawHub's context-aware review of the artifact, metadata, and declared behavior.
Scanner verdict
BenignMar 7, 2026, 11:40 PM
- Verdict
- benign
- Confidence
- high
- Model
- gpt-5-mini
- Summary
- This is a harmless instruction-only placeholder that simply redirects users to install the 'amigo' skill; it contains no code, install steps, or requests for credentials.
- Guidance
- This skill is just a placeholder that points you to the 'amigo' skill—it's low-risk by itself. Before installing, follow its advice and review the actual 'amigo' (and any sub-skills like open-thoughts or social-graph): check their install steps, required environment variables/credentials, whether they download code from external URLs, and whether they allow autonomous model invocation. If you only want a subset of functionality, install the specific sub-skill (open-thoughts or social-graph) rather than an umbrella package. If you have limited trust, avoid granting credentials or enabling always:true for any companion/autonomy skills.
Review Dimensions
- Purpose & Capability
- okThe name/description say this is a redirect to 'amigo' and the SKILL.md content matches that: it documents what 'amigo' provides and tells the user to run 'clawhub install amigo'. There are no additional unexplained requirements or claims.
- Instruction Scope
- okRuntime instructions are limited to a redirect and descriptive text about the 'amigo' system. The file does not instruct the agent to read local files, access environment variables, call out to unexpected endpoints, or transmit data.
- Install Mechanism
- okThere is no install specification and no code files. Because this is instruction-only, nothing is written to disk and no external packages are fetched by this skill itself.
- Credentials
- okThe skill declares no required environment variables, credentials, or config paths, and the SKILL.md does not ask for any secrets or unrelated credentials.
- Persistence & Privilege
- noteFlags show user-invocable: false and disable-model-invocation: false (default). This means the skill cannot be directly invoked by users via the UI, but the model would be allowed to invoke it autonomously if it were active. Because this skill is only a redirect placeholder with no code or installs and always:false, the platform-level invocation settings are not a substantive risk here—still, check the actual 'amigo' skill's privileges before installing it.