Skillv1.0.0

ClawScan security

Java Maven Code Review · ClawHub's context-aware review of the artifact, metadata, and declared behavior.

Scanner verdict

BenignApr 14, 2026, 8:30 AM

Verdict: benign
Confidence: high
Model: gpt-5-mini
Summary: The skill's code and instructions are consistent with a lightweight, local Java/Maven code-check scanner; it does not request credentials or install remote code, but it relies on an external normalization helper for handling ZIP/GitLab inputs.
Guidance: This skill appears to be a small, local scanner that looks for keyword-based issues and produces a markdown report — it does not contact external endpoints or require secrets by itself. Before installing, confirm: (1) the platform has the named shared dependency (java-maven-common) or else ZIP/GitLab inputs won't be handled; (2) the agent or helper that checks out GitLab repos is the component that will need SSH keys/tokens — do not point the scanner at a root path that exposes unrelated files (e.g., your home directory); (3) understand that the bundled script is rule/keyword-based and should be used as a first-pass tool, not a substitute for a manual security/design review.

Review Dimensions

Purpose & Capability: okName and description match the included behavior: the Python script scans a project tree for simple keywords and emits a markdown report. The SKILL.md's expectation to accept ZIP or GitLab inputs is reasonable, but the skill itself defers normalization/checkout to a shared dependency ('java-maven-common'), which must be present for those input modes to work.
Instruction Scope: noteSKILL.md limits scanning to pom.xml, src/, resources, and CI scripts which matches the script's filesystem scan. However, the SKILL.md mentions GitLab SSH access and ZIP normalization but the bundled script does not perform repository checkout or network access — that responsibility is delegated to the named shared dependency. Ensure that the normalization step does not expand scope (e.g., by pointing root at unrelated filesystem locations).
Install Mechanism: okNo install spec; this is instruction-only with one bundled Python script. Nothing is downloaded or executed from external URLs during install.
Credentials: noteThe skill declares no required environment variables or credentials, which matches the script. One caveat: supporting a 'GitLab repository URL with user-authorized SSH access' implies that some other component (the agent or the shared helper) will need SSH keys or GitLab tokens — those are not requested or documented here. Confirm how repository checkouts are performed and which component requires credentials.
Persistence & Privilege: okalways:false and no special privileges requested. The skill writes reports to paths provided at runtime (e.g., business/...), which is expected behavior for report generation; it does not modify other skills or system-wide configuration.