Back to skill
Skillv1.0.0
ClawScan security
javascript-pro · ClawHub's context-aware review of the artifact, metadata, and declared behavior.
Scanner verdict
BenignMay 1, 2026, 2:51 PM
- Verdict
- Benign
- Confidence
- high
- Model
- gpt-5.5
- Summary
- This is an instruction-only JavaScript coaching skill with no install steps, credentials, code execution, or hidden capabilities shown in the artifacts.
- Guidance
- This skill appears safe to install as a JavaScript guidance/reference skill. Review generated code before using it in real projects, especially examples involving workers, storage, network requests, or DOM actions, but the skill artifacts themselves do not show suspicious behavior.
Review Dimensions
- Purpose & Capability
- okThe artifacts consistently describe JavaScript expertise, examples, best practices, and implementation guidance.
- Instruction Scope
- okThe instructions focus on producing clean, secure, performant JavaScript and do not redirect user goals or demand unsafe behavior.
- Install Mechanism
- okThere is no install specification and no runnable code files; the skill is instruction-only.
- Credentials
- okNo environment variables, credentials, binaries, OS permissions, or external service access are requested.
- Persistence & Privilege
- okThe artifacts do not request persistence, background operation, account access, or elevated privileges.