Back to skill
Skillv1.0.0
ClawScan security
Daily Digest · ClawHub's context-aware review of the artifact, metadata, and declared behavior.
Scanner verdict
BenignMar 9, 2026, 8:11 AM
- Verdict
- benign
- Confidence
- high
- Model
- gpt-5-mini
- Summary
- The skill is an instruction-only Gitee notification/PR/issue aggregator that only calls expected MCP endpoints and does not request unrelated credentials or install anything.
- Guidance
- This skill appears coherent and only needs a configured Gitee MCP server. Before installing, verify (1) the MCP server configuration on your agent—what Gitee account and OAuth/token scopes it uses and whether those scopes are appropriately limited; (2) that you trust the platform/provider storing those credentials; and (3) whether you want the agent to be allowed to invoke the skill autonomously (default is allowed). If you prefer tighter control, restrict the MCP server token scopes to read-only notification/PR/issue access and disable autonomous invocation in your agent settings.
Review Dimensions
- Purpose & Capability
- okThe name/description (daily digest of notifications, PRs, issues) aligns with the runtime instructions, which call Gitee MCP endpoints (get_user_info, list_user_notifications, list_repo_pulls, list_repo_issues). The declared requirement (Gitee MCP server) is appropriate for the stated purpose.
- Instruction Scope
- okSKILL.md instructs only to query Gitee MCP endpoints, filter and format results into a digest. It does not ask to read arbitrary files, environment variables, or transmit data to unrelated endpoints. The mcporter note is optional and related to invoking the MCP tool.
- Install Mechanism
- okThis is an instruction-only skill with no install spec or code files, so nothing is written to disk and there are no download-based risks.
- Credentials
- noteNo environment variables or credentials are declared in the skill; it relies on a preconfigured Gitee MCP server (declared in requires). This is proportionate, but you should confirm what credentials/permissions the configured MCP server holds on your agent/platform and that they are limited to the Gitee account and scopes needed.
- Persistence & Privilege
- okalways is false and the skill is user-invocable (normal). The skill does not request persistent system-wide changes or elevated privileges.