Back to skill
Skillv1.0.0
ClawScan security
Upwork Proposal Writer · ClawHub's context-aware review of the artifact, metadata, and declared behavior.
Scanner verdict
BenignMar 13, 2026, 3:31 PM
- Verdict
- benign
- Confidence
- high
- Model
- gpt-5-mini
- Summary
- The skill is instruction-only and its requests (no installs, no env vars, no code) line up with the stated purpose of drafting Upwork proposals.
- Guidance
- This skill appears coherent and low-risk: it only contains instructions for drafting proposals and asks for job text or a URL. Before using it, avoid pasting private credentials or other sensitive data into prompts. If you provide a job URL be aware the agent (or underlying platform) might fetch that page — if you don't want web access, paste the job text instead. If you want portfolio examples included, provide the specific project descriptions or links you approve rather than allowing the agent to search external sites. Finally, exercise your own judgment about applying to jobs that could involve scraping or automation that violates Terms of Service or laws.
Review Dimensions
- Purpose & Capability
- okName, description, and included files describe a proposal-writing helper and do not request unrelated credentials, binaries, or installs. The config.json metadata matches the SKILL.md purpose.
- Instruction Scope
- noteSKILL.md stays within the proposal-writing scope (accepts job URL or pasted text, provides proposal template, pricing guidance). It is slightly vague about how to obtain or incorporate 'portfolio examples' (it does not specify reading local files or fetching external accounts), and accepts a job posting URL which implies fetching a web page if the agent performs network access. The skill does not instruct the agent to read unrelated system files or environment variables.
- Install Mechanism
- okNo install spec and no code files are present (instruction-only). Nothing will be downloaded or written to disk by the skill itself.
- Credentials
- okThe skill requests no environment variables, credentials, or config paths. There is no disproportionate or unexplained credential access.
- Persistence & Privilege
- okalways is false and the skill is user-invocable (normal). There is no indication it requests persistent system privileges or modifies other skills/configs.