Skillv1.5.0

ClawScan security

Agent of Empires · ClawHub's context-aware review of the artifact, metadata, and declared behavior.

Scanner verdict

BenignApr 29, 2026, 2:31 PM

Verdict: benign
Confidence: high
Model: gpt-5-mini
Summary: The skill's requirements and instructions are internally consistent with a CLI wrapper for managing tmux-based AI agent sessions (aoe); nothing requested is disproportionate to that purpose, but you should verify the aoe binary's provenance and be cautious because the tool can capture tmux pane contents which may include sensitive data.
Guidance: This skill is coherent for managing aoe/tmux agent sessions, but take these precautions before installing: 1) Verify the aoe binary you have is from a trusted source (the SKILL.md points to a GitHub repo; prefer installing from an official release and inspect the code if possible). 2) Be careful with 'aoe session capture' and piping captures: do not run captures on panes that may contain secrets (API keys, passwords, private tokens). 3) Note the SKILL.md mentions AGENT_OF_EMPIRES_PROFILE even though no env var is declared — treat that as an optional config variable rather than a secret requirement. 4) Avoid using 'YOLO' or force-delete options in contexts where you might lose work or accidentally delete data. If you need higher assurance, review the aoe project's source and its behavior around reading/writing worktrees and capturing tmux panes before using it on sensitive projects.

Review Dimensions

Purpose & Capability: okThe name/description match the runtime instructions: this skill is a thin instruction-only wrapper that tells the agent how to use the aoe CLI to manage agent sessions in tmux. The declared required binaries (aoe, tmux) are exactly what you'd expect for this functionality and there are no unexpected credentials or config paths requested.
Instruction Scope: noteSKILL.md confines actions to aoe commands (add/list/session/capture/etc.) and tmux-managed sessions, which is appropriate. It does, however, instruct capturing tmux pane content (aoe session capture) and piping/printing session content; that behavior is central to the skill but can expose sensitive terminal output or secrets if those appear in agent panes. The document also references an environment variable (AGENT_OF_EMPIRES_PROFILE) but the skill metadata does not declare any required env vars — this is a minor mismatch (undeclared optional env var).
Install Mechanism: okThis is an instruction-only skill with no install spec and no code files. No files are written to disk by the skill itself; the skill expects the aoe and tmux binaries to already be present. No download/install URLs or archive extraction are present in the bundle.
Credentials: noteRequires no credentials or config paths in metadata, which is proportionate. However, SKILL.md references AGENT_OF_EMPIRES_PROFILE as a configuration ENV var (used to select profiles) even though it's not declared as required — this is not a critical issue but is an inconsistency. More importantly, commands like 'aoe session capture' can read and output terminal content from arbitrary project directories and tmux panes; while expected for monitoring, that capability can expose secrets if run in sessions where credentials or sensitive data appear.
Persistence & Privilege: okThe skill does not request permanent/always-on inclusion (always:false) and it does not claim to modify other skills or global agent settings. Autonomous invocation is allowed by default on the platform, but there are no additional persistence or privilege claims in this skill.