Back to plugin
Pluginv0.1.0
ClawScan security
Mission Preflight · ClawHub's context-aware review of the artifact, metadata, and declared behavior.
Scanner verdict
BenignApr 25, 2026, 6:11 AM
- Verdict
- benign
- Confidence
- high
- Model
- gpt-5-mini
- Summary
- The plugin's code, instructions, and manifest are consistent with its stated purpose (text preflight: ambiguity, risk, and brief generation); it does not request credentials, external downloads, or surprising privileges.
- Guidance
- This skill appears coherent and self-contained: it analyzes text heuristically and does not request secrets or perform network calls. Before installing, consider: 1) the plugin will process any text you send it—do not pass secrets or private credentials into the tool; 2) the repository has no homepage and a single owner ID—if you require stronger provenance, review the source files in full or prefer a plugin from a known organization; 3) confirm the truncated listing you saw is not hiding behavioral code (review the full index.js/dist/index.js in the package). If you only need text preflight checks, this plugin looks appropriate.
Review Dimensions
- Purpose & Capability
- okName/description (preflight / ambiguity / risk checks) match the bundled JS and SKILL.md. The declared tools (mission_preflight_scan, mission_preflight_stress_test, mission_preflight_brief) correspond to functions and heuristics in index.js and dist/index.js. No unrelated credentials, binaries, or config paths are requested.
- Instruction Scope
- okSKILL.md limits behavior to analyzing user-provided requests and producing scores, questions, and briefs. It does not instruct the agent to read local files, environment variables, or to transmit data externally beyond normal plugin invocation.
- Install Mechanism
- okNo install spec that downloads arbitrary code from external URLs; the package includes source and a built dist file and relies on a small dependency (@sinclair/typebox). No archive/extract-from-URL installs were present in the metadata.
- Credentials
- okThe skill requests no environment variables, no primary credential, and no config paths. The code contains no references to secrets or unrelated service credentials.
- Persistence & Privilege
- okalways is false and default autonomous invocation is allowed (normal). The plugin does not appear to modify other plugins or system-wide settings; it exposes only the declared tools.