Back to skill
Skillv8.0.12
ClawScan security
Danube Tools Marketplace · ClawHub's context-aware review of the artifact, metadata, and declared behavior.
Scanner verdict
BenignApr 15, 2026, 1:39 AM
- Verdict
- benign
- Confidence
- high
- Model
- gpt-5-mini
- Summary
- The skill's requirements and runtime instructions are consistent with a marketplace connector: it only asks for a single Danube API key and curl and contains discovery/execute instructions for marketplace tools.
- Guidance
- This skill is internally consistent, but you should only provide a DANUBE_API_KEY if you trust Danube and understand what marketplace tools your agent might run. The key grants the ability to discover and execute user-scoped tools and to create/update your own marketplace artifacts, so: (1) use a least-privilege API key if Danube supports that, (2) prefer the device authorization flow when possible, (3) review and restrict tool-level credentials in the Danube dashboard before executing tools that require additional auth, (4) monitor Danube audit logs and be prepared to revoke the API key if you see unexpected activity, and (5) avoid exposing other service credentials to the marketplace unless you explicitly trust that integration. Since this is instruction-only, nothing is installed locally by the skill itself.
Review Dimensions
- Purpose & Capability
- okName/description (marketplace connector) align with requested artifacts: a single DANUBE_API_KEY and curl are appropriate and expected for an API-based marketplace proxy.
- Instruction Scope
- okSKILL.md only describes using Danube APIs (device auth, MCP config, search/execute patterns) and does not instruct reading unrelated files, extra env vars, or exfiltrating data to unexpected endpoints.
- Install Mechanism
- okInstruction-only skill with no install spec or code files; nothing is downloaded or written to disk by the skill itself — minimal install risk.
- Credentials
- okOnly a single credential (DANUBE_API_KEY) is required and documented as the primary credential; that matches the marketplace functionality and is proportionate.
- Persistence & Privilege
- okalways is false and the skill does not request persistent system-level privileges or modify other skills' configs; autonomous invocation is allowed by default but not excessive here.