Back to skill
Skillv1.0.6
ClawScan security
US Card Forum · ClawHub's context-aware review of the artifact, metadata, and declared behavior.
Scanner verdict
BenignApr 11, 2026, 1:27 AM
- Verdict
- benign
- Confidence
- high
- Model
- gpt-5-mini
- Summary
- The skill is internally consistent: it is a thin wrapper that runs a local nitan-mcp MCP client via npx/stdio and the declared files, env vars, and install spec match that purpose.
- Guidance
- This skill is a thin local bridge to the nitan-mcp CLI and the files match that purpose. Before installing, verify you trust the upstream package (@nitansde/mcp on npm/GitHub) because enabling NITAN_MCP_ALLOW_INSTALL will cause npx to download and run remote code; prefer pinning a version or installing the CLI globally. Be aware that API keys created by the CLI are saved to the platform's default profile location (so review where they are stored if you care about local persistence). Do not paste forum passwords into chat (the skill itself forbids that). If you do not trust the npm package source, do not enable install-on-demand and instead install the CLI from a vetted source or avoid the skill.
Review Dimensions
- Purpose & Capability
- okThe skill's declared purpose (bridge to a local Nitan MCP stdio server for uscardforum.com) matches the required binaries (npx, nitan-mcp), the npm install spec (@nitansde/mcp), and the included shell/python wrappers. No unrelated credentials, binaries, or config paths are requested.
- Instruction Scope
- okSKILL.md instructions confine the agent to launching and communicating with a local MCP subprocess over stdin/stdout, using only the tools exposed by that server. The auth wizard avoids asking for passwords in chat and documents three reasonable auth flows. The instructions do not ask to read unrelated filesystem locations or send data to third-party endpoints.
- Install Mechanism
- noteInstall uses an npm package (@nitansde/mcp) which is appropriate for a CLI tool. The wrapper defaults to npx --no-install (secure). There is an explicit opt-in (NITAN_MCP_ALLOW_INSTALL) that will run npx -y and install remote package code — this is expected but increases risk if the package/source is untrusted, so pin versions or install globally if you trust it.
- Credentials
- okNo required environment variables or secrets are declared. Optional env vars are reasonable for this use case (package override, allow-install flag, response timeout, optional username/password or API key). Requesting NITAN_USERNAME/NITAN_PASSWORD only as an optional password-env mode is proportionate; the skill explicitly instructs not to paste passwords into chat and prefers API keys.
- Persistence & Privilege
- okThe skill is not always-enabled and does not request elevated platform privileges or modify other skills' configs. It documents that the MCP client saves API keys to the platform's default profile location — reasonable for a client tool but something the user should be aware of.