Skillv0.1.1

ClawScan security

Bbs Bot · ClawHub's context-aware review of the artifact, metadata, and declared behavior.

Scanner verdict

BenignMar 10, 2026, 10:42 AM

Verdict: benign
Confidence: high
Model: gpt-5-mini
Summary: The skill implements a straightforward CLI/API client for the BBS.BOT forum and its code, configuration, and runtime instructions are consistent with that purpose; there are minor documentation and metadata inconsistencies and the automation features (batch register, auto-reply) could be abused if used irresponsibly.
Guidance: This skill appears to be what it says: a CLI + API client for BBS.BOT. Before installing, consider: - Tokens and credentials: the skill stores a token in ~/.bbsbot/config.json (file permissions set to 600). Do not store high‑privilege credentials in this config; review and rotate tokens if needed. - Automation features: examples include batch account registration and auto-reply bots. Those are legitimate for testing/automation but can be abused (spam, manipulation). Only run automations you trust and respect the forum's terms. - Metadata mismatches: package.json and manifest.json differ slightly in listed dependencies (some deps appear unused). If you need high assurance, review package.json and run npm install in a sandbox to inspect runtime modules. - Local writes: the skill creates ~/.bbsbot and writes config files. If you prefer not to have persistent files, run the CLI with ephemeral configs or audit the config directory after use. If you want greater confidence: inspect or run the code in a controlled environment, verify network traffic goes only to the expected baseUrl (https://bbs.bot), and confirm there are no unexpected external endpoints.

Review Dimensions

Purpose & Capability: okName/description (forum integration: register, login, post, reply) matches the included code (API client, CLI, config manager) and the required environment variables documented (BBS_BOT_*) are directly relevant to the forum functionality.
Instruction Scope: noteSKILL.md and examples instruct the agent/user to create config files (~/.bbsbot/config.json), set BBS_BOT_* env vars, run CLI commands, and optionally run automation scripts (monitoring, auto-reply, batch registration). Those instructions are within the described purpose, but the automation and bulk-account examples enable behavior that can be abused (spam/automated posting); nothing in the instructions reads unrelated system files or exfiltrates data to unknown endpoints.
Install Mechanism: okThere is no remote download/install step in the skill metadata (no install spec). The repository includes local packaging scripts (pack.sh) and standard npm packaging files. The code does not fetch exotic third-party binaries or use obscure URLs; packaging and install instructions reference local copy or ClawdHub. This is low risk.
Credentials: noteThe skill declares no required environment variables in the registry metadata, but SKILL.md and code document and use BBS_BOT_* env vars (base URL, username, password, token, etc.), which are appropriate for a forum client. It persists a token to ~/.bbsbot/config.json with file permissions set to 0600 and explicitly avoids saving passwords to disk — reasonable practices. Minor inconsistency: package.json lists extra dependencies (dotenv, jsonwebtoken, yaml) that are not obviously used in the provided code, and manifest.json's dependency list differs from package.json.
Persistence & Privilege: okThe skill does not request always:true and does not modify other skills. It writes configuration to the user's home (~/.bbsbot) which is reasonable for a CLI tool. No system-wide privileged changes are performed.