Skillv1.0.0

ClawScan security

Django Project Creator · ClawHub's context-aware review of the artifact, metadata, and declared behavior.

Scanner verdict

BenignFeb 19, 2026, 3:13 PM

Verdict: benign
Confidence: high
Model: gpt-5-mini
Summary: The skill's code and instructions match its stated purpose (bootstrapping Django projects); it performs filesystem changes and pip installs which are expected for this task but warrant normal caution (run in a virtualenv/sandbox and review packages).
Guidance: This skill appears to do what it claims (scaffold Django/DRF projects) and includes an executable script that will write files, create a virtualenv, install packages from PyPI, and run Django migrations. Before running/installing: (1) review the script (already included) so you understand the exact files it will create and commands it will run; (2) run it in a disposable directory or sandbox; (3) use an isolated virtual environment to avoid contaminating a global Python environment; (4) be aware it will perform network operations (pip installs) — verify the packages and your network/policy constraints; (5) note that the script is interactive and may not behave as expected in non-interactive runs. If you need automated/non-interactive provisioning or stricter supply-chain guarantees, prefer tools with vetted release artifacts or add explicit package version pins and an install spec.

Review Dimensions

Purpose & Capability: okThe name/description (Django project creator) align with the included script: it creates Django projects/apps, writes settings/urls/views/serializers, creates models, and installs Django/DRF-related packages. There are no unrelated environment variables, binaries, or external service credentials requested.
Instruction Scope: noteSKILL.md describes environment provisioning and scaffolding only. The actual script performs file writes, directory changes, pip installs, and runs Django management commands (makemigrations, migrate). Those actions are within the stated scope, but they are invasive filesystem and network actions and are interactive (require user input). The SKILL.md does not explicitly warn about network package installs or migrations — users should expect those side effects.
Install Mechanism: noteThere is no install spec (instruction-only skill). The shipped Python script itself invokes pip at runtime to install packages from PyPI (e.g., django, djangorestframework, drf-nested-routers, django-cors-headers). This is coherent with the purpose but means the skill will cause network activity and modify the local Python environment when run.
Credentials: okThe skill requests no environment variables or credentials. It operates solely on filesystem paths provided by the user and installs public packages — the level of access requested is proportional to its purpose.
Persistence & Privilege: okalways is false and the skill does not attempt to modify other skills or system-wide agent settings. Its persistence is limited to creating project files, virtualenvs, installing packages, and running migrations in the user-specified path.