Skillv0.1.0

ClawScan security

Super Rss Agent · ClawHub's context-aware review of the artifact, metadata, and declared behavior.

Scanner verdict

BenignMar 15, 2026, 4:31 PM

Verdict: benign
Confidence: high
Model: gpt-5-mini
Summary: The skill is an internally consistent RSS management CLI: its code, docs, and runtime instructions match the described purpose and it does not request unrelated credentials or suspicious install sources.
Guidance: This skill appears coherent and implements the advertised RSS functionality. Before installing: (1) run pip install -r requirements.txt inside a virtualenv to install dependencies; (2) be aware the default SQLite DB is created in the skill directory (super_rss_agent.db) — use the --db option to place it somewhere you control/back up; (3) the tool performs network fetches of the URLs you add — SSRF protections and response-size/time limits are implemented, but avoid adding internal-only URLs unless you trust the environment; (4) no credentials or tokens are required by the skill; (5) if you plan to enable automated/cron runs, consider running it in a constrained environment (container or limited-permission account) and review the code yourself if you need a higher assurance level.

Review Dimensions

Purpose & Capability: okThe name/description (RSS feed management, discovery, scraping, summaries, auto-purge) matches the provided code and CLI commands. All requested functionality (feed discovery, HTML fallback scraping, DB storage, purge, search, stats) is implemented in the included scripts; there are no unrelated environment variables, unusual binaries, or external credentials requested.
Instruction Scope: okSKILL.md and README give concrete CLI commands that correspond to the Python scripts. The runtime instructions confine actions to network fetching of feeds, HTML parsing, and SQLite storage; they do not instruct reading unrelated system files or exfiltrating data to an external endpoint.
Install Mechanism: noteThere is no automated install spec in registry metadata, but the README instructs the user to pip install -r requirements.txt (a small, reasonable dependency list). This is expected for a Python CLI; note that installation is manual (no packaged/binary install provided).
Credentials: okThe skill declares no required environment variables, no primary credential, and uses only local SQLite files. The code does not attempt to read secrets or unrelated env vars. Database is created under the skill root by default (user may override with --db).
Persistence & Privilege: okThe skill is not always-enabled and does not request elevated system privileges. It stores its own SQLite DB in the skill workspace by default and does not modify other skills or global agent settings. Autonomous invocation remains possible (platform default) but is not combined with other privilege anomalies.