Back to skill
Skillv0.2.0
ClawScan security
ARES Business Registry (CZ) · ClawHub's context-aware review of the artifact, metadata, and declared behavior.
Scanner verdict
BenignMar 1, 2026, 7:43 PM
- Verdict
- benign
- Confidence
- high
- Model
- gpt-5-mini
- Summary
- The skill's files and runtime instructions align with its stated purpose (querying the Czech ARES registry); it uses only stdlib HTTP calls to ares.gov.cz, requires no credentials, and writes a local cache under the skill directory.
- Guidance
- This skill is coherent with its description: it contacts the official ARES endpoints, requires no credentials, and caches a legal-form mapping in a .cache folder under the skill workspace. If you install it, be aware it will perform outbound HTTP requests to ares.gov.cz when you run it (or if you enable the optional live smoke tests by setting ARES_SMOKE_LIVE=1). The cache file is created in the skill directory; if you are concerned about workspace writes, inspect or restrict that path. If you want extra assurance, review the full ares_client.py file in your installation (the provided excerpt shows no obfuscation or unexpected external endpoints).
Review Dimensions
- Purpose & Capability
- okName/description match the included files: scripts/ares_client.py implements ICO lookups, name/NACE searches, JSON/raw/human outputs and legal-form decoding. Required capabilities (network access to ares.gov.cz and a local cache) are proportional to the described functionality.
- Instruction Scope
- okSKILL.md instructs running the included Python script and documents flags, output modes, caching, and retries. Instructions do not request unrelated files, secrets, or system-wide config. The only filesystem access is to a skill-local cache path; smoke_test.sh optionally performs live network calls when ARES_SMOKE_LIVE=1.
- Install Mechanism
- okNo install spec (instruction-only wrapper + included script). The implementation uses only Python stdlib (urllib) and no external downloads, packages, or archive extraction, which is proportionate and low-risk.
- Credentials
- okThe skill declares no required environment variables or credentials. The code respects this: HTTP calls go to ares.gov.cz and no secrets or unrelated env vars are read. The smoke test uses an optional ARES_SMOKE_LIVE env var to enable live checks (documented).
- Persistence & Privilege
- okThe skill writes a cache file under skills/ares-business-registry/.cache/pravni_forma.json (skill-local). It does not request always:true or attempt to modify other skills or system-wide agent settings. Autonomous invocation defaults are unchanged.