Skillv1.0.0

ClawScan security

Reddit Search But Free · ClawHub's context-aware review of the artifact, metadata, and declared behavior.

Scanner verdict

BenignMar 2, 2026, 10:46 PM

Verdict: Benign
Confidence: high
Model: gpt-5-mini
Summary: The skill appears internally consistent with its stated purpose: it fetches Reddit and community-archive JSON endpoints, caches results to a local data/ folder, and does not request secrets or unrelated system access.
Guidance: This skill looks coherent and implements the advertised Reddit research features, but consider the following before installing: - It performs outbound HTTP requests to old.reddit.com and two third-party archive domains (PullPush, Arctic Shift). Only install if you are comfortable with those network endpoints. - The CLI uses 'npx tsx' to run TypeScript; if tsx is not installed locally, npx will fetch it from the npm registry on first run — run in an isolated environment if you prefer not to pull packages on demand. - The skill writes cache and watchlist files under its own data/ directory (data/cache, data/watchlist.json). If you install into a shared workspace, review those files and their contents periodically. - The repository source is listed as unknown / no homepage; if provenance matters, consider auditing the code locally (you can inspect scripts/*.ts) before running, or run inside a sandbox/container. - If you allow agents to invoke skills autonomously, remember this skill will make network requests as part of searches and watchlist checks; limit autonomous permissions if you want stricter control. Overall, the package appears benign and proportionate to its stated purpose. If you want higher assurance, review the included TypeScript files locally or run the tool in an isolated environment first.

Review Dimensions

Purpose & Capability: okName/description (Reddit research) matches the code and SKILL.md. The code fetches old.reddit.com JSON and community archives (PullPush, Arctic Shift), implements search, threads, user/profile endpoints, watchlist, and caching — all expected for a Reddit research tool.
Instruction Scope: okRuntime instructions are limited to running the included TypeScript CLI (npx tsx reddit.ts ...) and using provider endpoints. The skill reads/writes only its own data directory (data/cache, data/watchlist.json) and does not instruct reading unrelated system files or other credentials. The 'heartbeat' suggestion to run watchlist check is an agent-level guidance but not an instruction to access unrelated data.
Install Mechanism: noteThere is no explicit install spec; the package is used via npx tsx which may fetch the tsx runtime from npm if not present. SKILL.md claims 'zero dependencies' and 'no npm install needed' — technically the code has no package.json dependencies, but invoking with 'npx tsx' will pull a package on demand. This is expected for TypeScript scripts but is a mild install-time behavior to be aware of.
Credentials: okThe skill requests no environment variables or credentials. Network access is required (old.reddit.com, api.pullpush.io, arctic-shift.photon-reddit.com) which aligns with the described providers. It writes cache/watchlist files under the skill's data directory only — no broad credential/environment access is requested.
Persistence & Privilege: notealways is false and the skill does not request elevated platform privileges. It does persist a cache and watchlist into its own data/ folder (expected). Because agent autonomous invocation is allowed by default, an agent could run searches and make outbound requests autonomously — this is normal but worth noting if you enable autonomous behaviors.