Skillv1.0.0

ClawScan security

PhotoCHAT Photo Search · ClawHub's context-aware review of the artifact, metadata, and declared behavior.

Scanner verdict

BenignMar 2, 2026, 12:30 AM

Verdict: benign
Confidence: high
Model: gpt-5-mini
Summary: This is an instruction-only skill that wraps a local PhotoCHAT CLI to search the user's photo library; its requirements and instructions align with that purpose and it does not request credentials, installs, or network endpoints.
Guidance: This skill is coherent and doesn't request credentials or install code, but it operates on your local photo library: make sure the 'photochat' app (MSIX) is installed and up-to-date, and that you are comfortable granting the agent access to image file paths (the skill will read absolute paths and may display images via the agent's image tool). If you have sensitive photos you do not want an agent to access, do not enable this skill or restrict the agent's file access. If you want stronger assurance, ask the publisher for the skill source/origin or require a signed package of the 'photochat' CLI before enabling.

Review Dimensions

Purpose & Capability: okName/description match the instructions: the SKILL.md tells the agent to run the local 'photochat' CLI to perform natural-language photo searches and parse JSON output. There are no unrelated environment variables, external services, or installs requested — the need for a local 'photochat' binary is proportionate to the stated purpose.
Instruction Scope: noteInstructions are narrowly scoped to running 'photochat search' with JSON output, parsing the results, and presenting file paths. This is appropriate for a local photo-search skill, but it does explicitly expect absolute file paths and instructs passing them to the agent's image/display tool — which means the agent will access the user's photo files. That privacy-relevant behavior is expected for the stated purpose but is worth noting.
Install Mechanism: okNo install spec or code is provided (instruction-only), so nothing is downloaded or written by the skill itself. This is the lowest-risk install profile and matches the skill's description.
Credentials: okThe skill requires no environment variables, credentials, or config paths. The only implicit requirement is access to the local 'photochat' binary and filesystem paths for photos; those are proportional to a local photo-search capability and are not excessive.
Persistence & Privilege: okalways is false and the skill is user-invocable; it does not request persistent/system-wide privileges or attempt to modify other skills. Autonomous invocation is permitted by default for skills and is not combined here with other concerning privileges.