Back to skill
Skillv1.0.0
ClawScan security
Shopify Ad Attribution · ClawHub's context-aware review of the artifact, metadata, and declared behavior.
Scanner verdict
BenignMar 20, 2026, 6:50 AM
- Verdict
- benign
- Confidence
- high
- Model
- gpt-5-mini
- Summary
- The skill is internally consistent with its stated purpose: an instruction-only Shopify attribution assistant that asks the user to paste order/export data and writes local reports; it requests no credentials or installs.
- Guidance
- This skill appears coherent and does not request credentials or install code, but take standard precautions: (1) Do not paste raw PII or payment info — paste only the UTM/relevant order columns. (2) Inspect the created ~/shopify-attribution/ files and delete them when done. (3) The SKILL.md lists allowed-tools: Bash, which means the agent could run shell commands depending on platform policies — run the skill in a restricted/sandboxed session if you are concerned about shell access. (4) If you want more assurance, review the upstream repository linked on the homepage before use and test with anonymized/sample data first.
Review Dimensions
- Purpose & Capability
- okName and description match the instructions: the agent expects pasted Shopify order UTM data, channel spend, and configuration, and produces ROAS/attribution reports. It declares no external integrations, binaries, or credentials — which is proportionate to an analysis-only skill.
- Instruction Scope
- noteSKILL.md confines operations to local analysis of pasted CSV/export data and creating files under ~/shopify-attribution/. It does not request external network calls or other system files. Note: the agent will create and store potentially sensitive order/customer data in the user's home directory, so users should avoid pasting PII (payment data) and should review/delete workspace files when finished.
- Install Mechanism
- okNo install spec and no code files — lowest-risk setup. Nothing is downloaded or written beyond the workspace the skill itself documents.
- Credentials
- okThe skill does not request environment variables, credentials, or config paths. This is appropriate for a tool that operates on user-pasted exports locally.
- Persistence & Privilege
- okalways is false and the skill is user-invocable. It writes its own workspace under the user's home directory (~/shopify-attribution/), which is reasonable for local-report persistence and does not modify other skills or system-wide settings.