Back to skill
Skillv1.0.2
ClawScan security
Travel Itinerary Builder · ClawHub's context-aware review of the artifact, metadata, and declared behavior.
Scanner verdict
BenignMar 4, 2026, 10:21 AM
- Verdict
- Benign
- Confidence
- high
- Model
- gpt-5-mini
- Summary
- The skill's code, declared dependencies, and runtime instructions are coherent with its stated purpose (it parses Gmail for bookings, fetches places and weather, and generates itineraries); optional credentials and external CLIs are used for the expected features.
- Guidance
- This skill appears to do what it says, but it interacts with external services and CLIs so take these precautions before installing: (1) Review the brew formulas 'gogcli' and 'steipete/tap/goplaces' to ensure they come from trusted sources; (2) Only provide GOG_KEYRING_PASSWORD or a GOOGLE_PLACES_API_KEY if you trust the CLIs—Gmail parsing reads email content and stores extracted bookings locally as JSON; (3) Network calls are expected (wttr.in for weather, Google Places or goplaces for POIs, gog CLI for Gmail); consider running the skill inside a container/VM if you want to isolate it; (4) After use, revoke any OAuth tokens/credentials you supplied if you no longer need them; (5) If you require higher assurance, inspect the included scripts (gmail_parser.py, places_fetcher.py, weather_fetcher.py, generate_itinerary.py) yourself or run them in a sandboxed environment.
Review Dimensions
- Purpose & Capability
- okName/description match the implementation: scripts implement itinerary generation, Gmail parsing, places lookup, and weather fetching. Required and optional tools (curl, gog, goplaces) and optional env vars (GOG_KEYRING_PASSWORD, GOOGLE_PLACES_API_KEY) align with the described features.
- Instruction Scope
- okSKILL.md instructs the agent to run the provided scripts and documents what data will be accessed. The gmail_parser script explicitly calls the gog CLI to read Gmail and writes extracted bookings to local JSON files; places_fetcher and weather_fetcher call goplaces/Google Places and wttr.in respectively. The instructions do not request unrelated files, credentials, or system paths.
- Install Mechanism
- noteInstall spec uses brew formulas (gogcli and steipete/tap/goplaces) and creates binaries 'gog' and 'goplaces'. These are optional installs referenced in SKILL.md. Brew formulas are a reasonable install mechanism, but they rely on third-party taps/formula names that should be reviewed by the user before installing.
- Credentials
- okNo required environment variables; two optional env vars (GOG_KEYRING_PASSWORD and GOOGLE_PLACES_API_KEY) are proportionate and directly support Gmail OAuth and Google Places usage. The scripts read only those env vars and do not request unrelated credentials.
- Persistence & Privilege
- okSkill does not request always:true or other elevated persistence. It runs as user-invoked/optional; it does not modify other skills or agent-wide settings.