Back to skill
Skillv1.0.6
ClawScan security
CMDB Compass · ClawHub's context-aware review of the artifact, metadata, and declared behavior.
Scanner verdict
BenignMar 16, 2026, 12:27 AM
- Verdict
- benign
- Confidence
- high
- Model
- gpt-5-mini
- Summary
- The skill's requests and instructions are consistent with a ServiceNow CMDB governance tool: it only asks for ServiceNow credentials and Python tooling and installs a PyPI package; nothing obviously unrelated is requested.
- Guidance
- This skill appears coherent with its stated purpose, but take standard precautions before installing third-party packages: 1) Verify the cmdb-compass PyPI project and associated GitHub repo/maintainers (look for recent activity, vetted owners). 2) Inspect the package source (or run pip install in an isolated environment) because Python packages execute code at install/import. 3) Use a least-privilege ServiceNow account (service account) for the credentials and rotate them if you stop using the skill. 4) If you need higher assurance, review the package code on GitHub or run the MCP server in a restricted host/container rather than on a broadly accessible machine.
Review Dimensions
- Purpose & Capability
- okThe name/description (ServiceNow CMDB governance) matches the declared requirements: python/pip and ServiceNow instance credentials. Required binaries and env vars are appropriate for a Python-based ServiceNow client.
- Instruction Scope
- okSKILL.md instructs installing the MCP server, configuring an MCP client with the ServiceNow URL/username/password, and running the Python module. It does not instruct reading unrelated files, exfiltrating data, or contacting unexpected endpoints beyond referenced GitHub/PyPI.
- Install Mechanism
- noteInstall is via a local script that runs 'pip install cmdb-compass' from PyPI. Installing from PyPI is a standard but higher-trust step than instruction-only skills because package code runs at install / on import. The script does not download from unknown URLs, but installing third-party packages carries the usual supply-chain risk.
- Credentials
- okThe skill requires only SERVICENOW_INSTANCE_URL, SERVICENOW_USERNAME, and SERVICENOW_PASSWORD — all directly necessary to access ServiceNow REST APIs. No unrelated secrets or config paths are requested.
- Persistence & Privilege
- okalways is false and the skill does not request system-wide config changes. It asks the user to store credentials in the MCP client config (local), which is consistent with its operation and does not appear to grant elevated platform privileges.