Skillv0.3.0

ClawScan security

Pinboard Manager · ClawHub's context-aware review of the artifact, metadata, and declared behavior.

Scanner verdict

BenignApr 27, 2026, 1:34 AM

Verdict: benign
Confidence: high
Model: gpt-5-mini
Summary: The skill's requirements and instructions are consistent with its stated purpose (Pinboard bookmark management); main risks are privacy-related (third‑party content fetching and local caching) rather than incoherence or unexplained privileges.
Guidance: This skill appears to do what it claims, but consider these practical precautions before installing or running it: - PINBOARD_AUTH_TOKEN grants read/write access to your Pinboard account. Treat it like a password: only provide it to skills you trust, and rotate it if you suspect exposure. - API calls include the token as a URL parameter (Pinboard API design). Avoid pasting the token into shared logs or commands that may be recorded; prefer setting it in a secure shell profile or environment that isn't logged. - The skill caches full bookmark data to /tmp/pinboard_all.json and writes a tag convention file under ~/.config/nini-skill/pinboard-manager/. The cache contains private bookmark notes/metadata unencrypted—remove or secure these files if needed. - Timeliness analysis fetches page content via the third-party Jina Reader (r.jina.ai). URLs and page content for candidate bookmarks will be sent to that external service; do not run that mode if you are uncomfortable exposing bookmark URLs or page contents to a third party. - Because the skill can perform delete/update operations via the API, run it initially in a cautious workflow (review-only / confirm each change) and back up/export your bookmarks before bulk operations. - If you plan to allow autonomous agents to invoke skills, be aware that an agent with access to this skill + token could modify or delete bookmarks; keep token scope limited and monitor activity. If you want more assurance, request an explicit 'dry-run' or review-only mode be added to the skill (no API writes) and/or inspect a sample run output before permitting any confirmed changes.

Review Dimensions

Purpose & Capability: okThe skill is an instruction-only Pinboard manager and only requires curl and PINBOARD_AUTH_TOKEN, which directly match the described API calls (posts/all, posts/add, posts/delete). No unrelated binaries, credentials, or services are requested.
Instruction Scope: noteInstructions stay within Pinboard management (tag audit, dead-link checks, timeliness analysis). They do, however, instruct the agent to: 1) cache full bookmarks to /tmp/pinboard_all.json, 2) write a convention file under ~/.config/nini-skill/pinboard-manager/, and 3) fetch page content via the third-party Jina Reader (https://r.jina.ai/...). These actions are functionally justified but have privacy implications (see guidance).
Install Mechanism: okNo install spec or downloadable code is included (instruction-only). This minimizes install-time risk—no archives or external installers are fetched by the skill itself.
Credentials: okOnly one environment variable (PINBOARD_AUTH_TOKEN) is required and is appropriate for read/write actions against the Pinboard API. No other credentials or unrelated env vars are requested.
Persistence & Privilege: noteThe skill will create a user-scoped config file (~/.config/nini-skill/...) and cache API responses in /tmp; these are reasonable for functionality but mean bookmark data and generated conventions are persisted locally. The skill does not request global/system privileges or alter other skills' configs.