Skillv1.0.0

ClawScan security

Scratch Refactoring For Code Understanding · ClawHub's context-aware review of the artifact, metadata, and declared behavior.

BenignApr 29, 2026, 2:50 PM

Verdict: benign
Confidence: high
Model: gpt-5-mini
Summary: This instruction-only skill is internally consistent: it asks for, and instructs, only the repository reads/edits and git operations necessary for throwaway refactoring and does not request unrelated credentials or installs.
Guidance: This skill is coherent with its stated purpose, but before using it: (1) ensure you run it on a local clone or a disposable branch — do not run on an active production branch; (2) confirm your working tree is clean or stash changes as instructed so exploratory edits can be safely discarded; (3) avoid pushing scratch branches to remote repositories (or remove them if accidentally pushed); (4) be mindful of printing or committing sensitive data during exploration (logs, test outputs); and (5) if you allow any agent to execute shell commands, limit its scope and review the exact commands it will run. If you need stronger guarantees, run the scratch refactor session in an isolated sandbox or container under your control.

Purpose & Capability: okThe name/description match the instructions: the skill guides throwaway refactoring and only requires repository access, editing, and git commands (branch/stash/delete). No unrelated services, binaries, or credentials are requested.
Instruction Scope: okSKILL.md confines the agent to VCS-safe exploratory edits (create scratch branch or stash, refactor locally, produce notes, discard changes). There are no instructions to read unrelated system files, transmit code externally, or access secrets.
Install Mechanism: okNo install spec or code files — instruction-only skill. This is low-risk because nothing is written to disk by the skill itself beyond the developer's normal repo operations.
Credentials: okThe skill declares no environment variables, credentials, or config paths. It only requires access to the codebase (reasonable and proportionate for the stated purpose).
Persistence & Privilege: okalways is false and the skill does not request persistent/system-wide privileges. It instructs normal local git operations and does not modify other skills or system configuration.