Skillv1.1.2

ClawScan security

Map Grabber · ClawHub's context-aware review of the artifact, metadata, and declared behavior.

Scanner verdict

BenignFeb 21, 2026, 1:35 AM

Verdict: benign
Confidence: high
Model: gpt-5-mini
Summary: The skill's code, instructions, and requirements are internally consistent with its stated purpose of fetching OpenStreetMap data and exporting maps; it requires standard mapping libraries and runs a local script, with no unexpected credentials, installs, or external endpoints beyond normal OSM services.
Guidance: This skill appears to do what it says: it runs a local Python script that uses osmnx to geocode and download OpenStreetMap data and export images/files. Before installing, consider: (1) you must pip install osmnx (and its heavy geopandas dependencies) — that can be nontrivial on some systems; (2) the script will send the provided address to OSM geocoding/Overpass services (privacy risk for sensitive locations); (3) the SKILL.md directs the agent to execute the script without asking for extra confirmation when you ask for a map—if you prefer confirmations, change that behavior; (4) outputs must be written to allowed media dirs (/tmp or ~/.openclaw/media/) for sending via chat; (5) the code is short and readable, but if you have high security/privacy requirements, review or run it in an isolated environment before adding to a production agent.

Review Dimensions

Purpose & Capability: okName/description match the included files: the script uses osmnx to geocode and download OSM streets/buildings and can export SVG/PNG/GPKG/DXF. Required libraries (osmnx, optional ezdxf) are appropriate and proportional to the stated functionality.
Instruction Scope: noteSKILL.md explicitly instructs the agent to run the included script via shell exec when the user requests a map and to send generated PNGs from allowed media dirs. This is in-scope for the feature, but the instructions assert 'Do not ask for confirmation' — note this gives the agent permission to run the script immediately when triggered. The script will perform network calls (osmnx -> Nominatim/Overpass) to geocode and fetch OSM data, which is expected but has privacy implications for sensitive addresses.
Install Mechanism: okThere is no automated install spec; the SKILL.md asks the user to run pip install -r requirements.txt. No downloads from arbitrary URLs or archive extraction are present. This is a low-risk, transparent approach.
Credentials: okThe skill requests no environment variables, credentials, or config paths. That is proportional: mapping and OSM access do not require secrets. The requirements.txt lists osmnx and ezdxf as expected.
Persistence & Privilege: okalways is false and model invocation is permitted (the platform default). The skill does not request persistent system-level privileges or modify other skills. The primary runtime action is running a local script on user request.