AANA Guardrail Skill Bundled Helper Variant
PassAudited by ClawScan on May 2, 2026.
Overview
The skill is a coherent, inspectable localhost guardrail helper, but users should only use it with a trusted local AANA bridge and redacted payloads.
This skill appears safe and consistent with its stated purpose. Before installing or using it, make sure the localhost AANA bridge is one you trust, keep review payloads short and redacted, and use only the approved bridge URL.
Findings (3)
Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.
A local AANA bridge could see the redacted review summary and influence whether the agent proceeds, revises, asks, defers, or refuses.
The helper communicates with a separate local service that receives task summaries and returns recommendations, so users need to trust that bridge even though the helper itself is localhost-scoped.
It only sends a minimal review payload to a separately running AANA HTTP bridge on `localhost`.
Use this only with an administrator- or user-reviewed localhost bridge, keep payloads redacted, and do not include secrets or unrelated private records.
If misused, the helper could POST the review payload to the wrong local service instead of the intended AANA bridge.
The helper allows the caller to choose a localhost URL, while validation restricts only the hostname. This is useful for configured bridges but should not be driven by untrusted workspace content.
parser.add_argument("--url", default=DEFAULT_URL, help="Local AANA bridge URL. Defaults to http://localhost:8765/agent-check.")Use the default URL or a clearly approved local bridge URL, and do not let unrelated files or untrusted instructions supply the URL.
The safety value of the skill depends on the separately installed local bridge being legitimate, reviewed, and correctly configured.
The policy engine/bridge required for live checks is not bundled in this package, so this review covers the helper but not the external AANA bridge implementation.
"external_checker": { "bundled": false, "required_for_live_checks": true, "default_url": "http://localhost:8765/agent-check" }Verify the provenance and policy behavior of the AANA bridge separately before relying on its recommendations.