Skillv1.0.1

ClawScan security

搜索&查询&安装Skill - skill4agent官方技能库 · ClawHub's context-aware review of the artifact, metadata, and declared behavior.

Scanner verdict

BenignMar 9, 2026, 8:34 PM

Verdict: benign
Confidence: high
Model: gpt-5-mini
Summary: The skill's declared purpose (search/read/install skills from skill4agent) matches its instructions and requirements; it is an instruction-only wrapper around the skill4agent CLI/API and does not request unrelated credentials or system privileges.
Guidance: This skill is coherent with its described purpose, but it relies on running remote code (via `npx`) and downloading/extracting ZIPs from a third-party site (skill4agent.com). Before using: (1) verify the skill4agent domain and npm package reputation; (2) prefer the API-read flow first to inspect SKILL.md and any 'script_check_notes' before running installs; (3) do not run `npx` or install downloaded skills in sensitive environments — use an isolated/sandbox workspace; (4) manually review any scripts flagged as 'need attention' before executing them; and (5) if you require stronger guarantees, obtain package checksums or signatures from the publisher or run installs inside disposable containers. The SKILL metadata lacks a homepage entry — consider verifying the publisher independently.

Review Dimensions

Purpose & Capability: okName/description, the required Node.js/npx usage, and the referenced API (skill4agent.com) are coherent with a 'search/read/install skills' utility. The external npm package and API URL align with the described functionality.
Instruction Scope: noteSKILL.md limits runtime actions to calling the skill4agent CLI via `npx` or calling the skill4agent.com API to search, read, download, and extract skill packages. It instructs downloading ZIPs and installing to a local `.agents/skills/<skill_name>` directory and to re-check any 'script_check_notes' for sensitive code. This is appropriate for the stated purpose, but it does involve executing remote code (npx) and extracting downloaded archives — operations that legitimately require user caution.
Install Mechanism: noteThere is no packaged install spec in the skill bundle (instruction-only). The instructions recommend `npx skill4agent` (which will fetch and execute an npm package on demand) and calling a third-party API to download ZIPs. Both are expected for this type of skill but carry the usual risks of running remote/npm-provided code and extracting archives from the network.
Credentials: okThe skill does not request environment variables, credentials, or config paths. No extraneous secrets or unrelated service credentials are required by the instructions.
Persistence & Privilege: okThe skill is not always-enabled and does not request elevated platform privileges. It does not instruct modifying other skills or global agent config. Its install behavior (placing files under local project directories) is consistent with its purpose.