saizeriya
PassAudited by VirusTotal on May 5, 2026.
Overview
Type: OpenClaw Skill Name: saizeriya Version: 1.0.1 The skill bundle provides instructions for an AI agent to operate the 'saizeriya.js' CLI tool, which is used for mobile ordering at Saizeriya restaurants. The instructions in SKILL.md include explicit safety constraints, such as requiring user confirmation before performing real-world actions like submitting an order or calling staff. It also includes a legitimate workflow for scanning QR codes using the 'qr-scanner-cli' package. No evidence of malicious intent, data exfiltration, or unauthorized execution was found.
Findings (0)
Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.
If used as intended, the agent may help place an order or call staff only after confirmation, but the user should carefully review those confirmations.
The skill can trigger real-world restaurant actions through the CLI, but it explicitly requires user confirmation for the highest-impact commands.
Ask for explicit confirmation before `submit`, `call staff`, or `call dessert`.
Only confirm submit/call actions after checking the exact restaurant session, cart contents, quantities, and intended action.
The agent may operate a dining session that could reveal receipt/account details and affect the current order.
A QR URL/session can delegate access to a live mobile-ordering session, including cart changes and account/receipt views.
start <name> <qrurl> ... manage a cart, view account or receipt details
Provide QR URLs or photos only for sessions you want the agent to operate, and avoid sharing sessions for other tables or accounts.
The runtime behavior depends on packages fetched or resolved outside this skill’s artifacts.
The skill relies on external CLI packages executed through npx/bunx without pinned versions in the provided artifacts.
npx saizeriya.js help ... npx -y qr-scanner-cli /path/to/qr-photo.jpg --clear
Use trusted package sources, consider pinning package versions, and review package provenance before using it in a sensitive environment.
Ordering session identifiers or state may remain on the local machine and be reused in later interactions.
The CLI may persist session state locally, and the skill can later list, resume, or remove those sessions.
Set `SAIZERIYA_CLI_HOME` only when the user wants a custom session storage directory. Otherwise let the CLI use its default session store.
Use a dedicated SAIZERIYA_CLI_HOME for sensitive sessions and remove sessions with the CLI when they are no longer needed.