Back to skill
Skillv1.0.0
ClawScan security
Jiugong Feixing · ClawHub's context-aware review of the artifact, metadata, and declared behavior.
Scanner verdict
BenignMay 1, 2026, 6:32 AM
- Verdict
- Benign
- Confidence
- high
- Model
- gpt-5.5
- Summary
- This appears to be a simple local feng-shui calculator that only runs a bundled Python script and does not request credentials, network access, persistence, or broad system permissions.
- Guidance
- This skill looks safe from the provided artifacts. Before installing, be comfortable with the agent running the bundled Python script locally to print feng-shui calculations, and treat the feng-shui output as reference or entertainment rather than authoritative advice.
Review Dimensions
- Purpose & Capability
- okThe stated purpose, SKILL instructions, and Python source all align around calculating and printing 九宫飞星 feng-shui positions for year, month, or day inputs.
- Instruction Scope
- okThe documented commands are limited to running the bundled feixing.py script with simple date arguments; there is no evidence of tool chaining, hidden instructions, data mutation, or autonomous high-impact actions.
- Install Mechanism
- okThere is no install spec or package download. The only declared requirement is python3, which is proportionate for the included local calculation script.
- Credentials
- okThe artifacts show no required environment variables, credentials, config paths, network calls, file reads/writes, or access to local private data.
- Persistence & Privilege
- okNo persistence, background worker behavior, privilege escalation, account access, or stored agent memory is evidenced in the artifacts.