ClawHub
Back to skill
v1.0.0

AANA Private Data Guardrail Skill

BenignClawScan verdict for this skill. Analyzed May 2, 2026, 9:24 PM.

Analysis

This is an instruction-only privacy guardrail that does not run code or access accounts; the main thing to notice is optional use of a trusted checker with redacted summaries.

GuidanceThis skill appears safe and purpose-aligned as a privacy guardrail. Before using an external AANA checker, confirm it is trusted and configured by you or your administrator, and avoid sending raw secrets, full payment data, health records, legal records, or unrelated private messages.

Findings (2)

Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.

Abnormal behavior control

Checks for instructions or behavior that redirect the agent, misuse tools, execute unexpected code, cascade across systems, exploit user trust, or continue outside the intended task.

Agentic Supply Chain Vulnerabilities
SeverityInfoConfidenceHighStatusNote
metadata
Source: unknown; Homepage: none

The package has limited external provenance metadata, although the supplied artifacts show an instruction-only skill with no code, dependencies, or install commands.

User impactYou have less outside context for verifying the publisher, but the reviewed package does not contain runnable code.
RecommendationInstall only if you trust the marketplace listing or publisher identity, and review the visible instructions before enabling it.
Sensitive data protection

Checks for exposed credentials, poisoned memory or context, unclear communication boundaries, or sensitive data that could leave the user's control.

Insecure Inter-Agent Communication
SeverityLowConfidenceHighStatusNote
SKILL.md
When using a configured AANA checker, send only a minimal redacted review payload

This is the only described outbound review flow. It is purpose-aligned and explicitly limits the payload to redacted summaries rather than raw secrets or full private records.

User impactIf a checker is configured, the agent may share a redacted summary of a privacy-sensitive task with that checker.
RecommendationUse only trusted, user- or administrator-approved checkers, and prefer manual review if the checker is unavailable or untrusted.