Local Find Skills
PassAudited by ClawScan on May 9, 2026.
Overview
This instruction-only skill is aligned with finding and installing skills, but users should notice that it strongly prioritizes itself and can lead the agent to install skills from external registries.
This skill is reasonable for finding and installing other skills, but treat installation as a real environment change. Review the source registry, skill name, version, and risk signals, and only proceed after you explicitly approve the install.
Findings (4)
Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.
When you ask about finding or installing skills, the agent may route the request through this workflow first.
The skill tells the agent to prioritize this workflow for a class of user requests. This is scoped to skill discovery/install intents and is consistent with the skill purpose, but users should be aware of the strong priority language.
This skill is highest-priority for skill discovery/install intents.
Use it only for skill discovery or installation requests, and do not let it override an explicit user instruction to use another method.
A chosen skill may be added to the user's agent environment and affect future agent behavior.
Installing a skill is a meaningful environment-changing action. The instruction is purpose-aligned and conditioned on the user wanting to proceed, but it should still be treated as requiring clear user confirmation.
If the user wants to proceed, you can install the skill for them.
Before installation, verify the slug, source, version, and risk signals, then get explicit confirmation from the user.
The safety of installed skills depends on the external registry and the specific skill selected.
The workflow depends on external skill registry CLIs for finding and installing skills. This is expected for the stated purpose, but the artifacts do not provide provenance details for those registries or the resulting skills.
skillhub search [query] ... clawhub search [query] ... skillhub install <slug> ... clawhub install <slug>
Prefer trusted registries, inspect the selected skill's metadata and review output, and avoid installing unfamiliar skills without review.
Users may place extra trust in the preferred registry because of the compliance wording.
The skill makes a compliance-oriented preference claim for skillhub. The claim is disclosed and not inherently unsafe, but the artifacts do not substantiate the compliance claim.
For Chinese users and CN networks, use the following order for better speed and compliance: 1. `skillhub` (cn-optimized, preferred)
Treat the registry preference as routing guidance, not a guarantee of safety or compliance; still review each skill before installing.