Back to skill
Skillv1.0.0
ClawScan security
Strategy Pattern Implementor · ClawHub's context-aware review of the artifact, metadata, and declared behavior.
Scanner verdict
BenignApr 10, 2026, 11:24 AM
- Verdict
- benign
- Confidence
- high
- Model
- gpt-5-mini
- Summary
- The skill's instructions, requirements, and scope are consistent with a code-refactoring helper for applying the Strategy pattern; it asks for no unrelated credentials or installs and appears to do only code inspection and refactoring guidance.
- Guidance
- This skill is internally consistent for refactoring to the Strategy pattern. Before enabling it, confirm you trust the agent's Read/Edit/Grep/TodoWrite tools because the skill will inspect and may modify your codebase. Prefer running it on a branch or in a sandbox and require explicit review of generated diffs/commits. If you have CI/pre-commit protections, keep them enabled to catch unintended changes. If you want tighter control, restrict the agent to read-only access or limit which files/directories it may edit.
Review Dimensions
- Purpose & Capability
- okThe name and description match the runtime instructions: locate conditionals, design a Strategy interface, implement ConcreteStrategy classes, and refactor the Context. It does not request unrelated binaries, env vars, or config paths.
- Instruction Scope
- noteSKILL.md tells the agent to read and grep the codebase and to edit files (tools: Read, Grep, Edit, TodoWrite). Those actions are appropriate for a refactoring skill but mean the agent will access and modify repository files — ensure you want the agent to have that file-level access and review changes before applying them.
- Install Mechanism
- okInstruction-only skill with no install spec and no code files. Lowest-risk installation footprint (nothing is written to disk by the skill itself).
- Credentials
- okThe skill requires no environment variables, credentials, or external config paths. Requested tools relate to code inspection/editing and are proportionate to the stated purpose.
- Persistence & Privilege
- okalways:false and no indications the skill modifies other skills or system-wide settings. It can be invoked autonomously (platform default), which is expected for a utility skill; combine with usual caution about autonomous code-modifying agents.