Skillv0.13.15

ClawScan security

Slv Grpc Geyser · ClawHub's context-aware review of the artifact, metadata, and declared behavior.

Scanner verdict

SuspiciousMar 30, 2026, 5:43 PM

Verdict: suspicious
Confidence: medium
Model: gpt-5-mini
Summary: The skill claims to provide Ansible playbooks and templates to deploy Solana gRPC Geyser nodes, but the package is missing those playbooks/templates and its runtime instructions expect many system tools and actions that are not declared — proceed only after clarifying the missing artifacts and the external install sources.
Guidance: This skill purports to include the Ansible playbooks/templates but the package you have is missing them — do not run deployment playbooks yet. Before installing or running: (1) ask the publisher for the actual ansible/ and jinja/ directories or confirm where ~/.slv/template/{version}/ansible/ is populated from; (2) verify any external install URLs (notably the suggested solana install host release.anza.xyz) are legitimate; (3) confirm which binaries will be invoked (ansible-playbook, ssh, curl, jq, ss, grpcurl, cargo) and whether you want the agent to use your SSH key files; (4) run any Ansible actions in --check (dry-run) first and review generated inventory.yml; (5) prefer to manually inspect and run the playbooks on a non-production host until you verify their provenance. If you cannot obtain the missing playbooks/templates or a trustworthy source, treat the skill as untrusted.

Review Dimensions

Purpose & Capability: concernThe skill's name/description promise 'Ansible playbooks and Jinja2 templates', but the file manifest does not include ansible/ or jinja/ directories or the playbooks referenced throughout SKILL.md/AGENT.md. SKILL.md repeatedly references many playbooks and runtime files that are not present in the bundle, which is inconsistent with the claimed capability.
Instruction Scope: concernSKILL.md instructs the agent to run ansible-playbook, ssh to remote hosts (using user SSH keys), run curl/jq/ss/grpcurl, build Rust projects with cargo, and clone GitHub repos. The skill metadata declares no required binaries or environment variables, so the runtime expectations (and access to SSH private keys via file paths) are not reflected in the declared requirements.
Install Mechanism: concernThere is no formal install spec, but scripts/setup.sh will attempt to auto-install ansible-core via pip/homebrew/apt/dnf which requires package manager privileges. The script also suggests installing solana-cli via a curl command pointing at release.anza.xyz (nonstandard/unknown host) — that external install suggestion is a potential risk if followed without verification.
Credentials: noteThe skill declares no required env vars or credentials. At runtime it will require SSH access to target servers (path to private key or SSH agent) and optionally an ERPC API key for monitoring. Those are expected for remote deployment but the skill does not declare them up front and directs use of local private key files (ansible_ssh_private_key_file), so users should confirm the agent will not persist or leak keys.
Persistence & Privilege: okThe skill does not request always:true and does not declare system-wide persistence. Autonomous invocation is enabled by default but not combined here with unusual privileges. The skill warns not to store private keys and to confirm destructive actions.