Skillv1.0.4

ClawScan security

Nso Macro Monitor · ClawHub's context-aware review of the artifact, metadata, and declared behavior.

Scanner verdict

SuspiciousFeb 25, 2026, 1:20 AM

Verdict: suspicious
Confidence: medium
Model: gpt-5-mini
Summary: The skill's instructions match its stated purpose, but it claims to require 'Brave API access' while declaring no credentials or environment variables—an inconsistency that should be clarified before use.
Guidance: Before installing, ask the skill author or provider to clarify how Brave API access is satisfied: does the platform provide a built-in Brave integration or will you need to supply an API key? If an API key is required, insist it be declared in the skill metadata (which env var) and documented how it's used. Confirm how watchlists (ACTIVE_WATCHLIST) should be supplied and that no credentials or local files will be read implicitly. Because the skill parses PDFs and web pages, verify that the platform's web-fetch/PDF extraction does not leak fetched content to unexpected endpoints and that the skill will always cite NSO URLs as required. These clarifications will resolve the main inconsistency and reduce the residual risk.

Review Dimensions

Purpose & Capability: noteName, description, and runtime steps (fetch NSO pages, parse PDFs, build same-period comparisons, produce sector impact) are coherent with a macro-monitoring skill. However, SKILL.md header states 'Requires Brave API access' while the registry lists no required env vars or primary credential—this mismatch is unexpected.
Instruction Scope: okThe SKILL.md instructions are narrowly scoped to web fetching, PDF/text extraction, constructing comparison tables, and producing sector summaries. They do not instruct reading unrelated system files or exfiltrating data to third-party endpoints beyond the NSO site. Required quality and confidence gates are explicit and constrained to NSO data.
Install Mechanism: okThis is an instruction-only skill with no install spec or code files, so nothing is written to disk during install. That minimizes installation risk.
Credentials: concernThe skill declares compatibility with a Brave API but requests no environment variables or credentials in the registry. If the Brave API requires an API key or token, those credentials are not declared here. Also the optional 'ACTIVE_WATCHLIST' input is referenced but not documented as a config or input type—clarify how user-provided watchlists are supplied and handled.
Persistence & Privilege: okThe skill does not request persistent presence (always:false) and does not claim to modify other skills or system-wide settings. Autonomous invocation is allowed (platform default) but not combined with other red flags.