v1.0.0

Antigravity Quota 1.1.0

ReviewClawScan verdict for this skill. Analyzed May 1, 2026, 5:20 AM.

Analysis

The quota checker appears purpose-aligned, but it reads local Clawdbot auth profiles and uses stored refresh tokens for all Antigravity accounts while the registry metadata does not declare that credential access.

GuidanceReview this carefully before installing. It appears to check quotas as advertised, but it should be treated as a credential-using skill because it reads Clawdbot auth profiles and uses Antigravity refresh tokens. Only install it if you trust the code and are comfortable with it checking all configured accounts; avoid sharing the JSON/table output if account emails or project IDs are sensitive.

Findings (3)

Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.

Abnormal behavior control

Checks for instructions or behavior that redirect the agent, misuse tools, execute unexpected code, cascade across systems, exploit user trust, or continue outside the intended task.

Human-Agent Trust Exploitation

SeverityMediumConfidenceHighStatusNote

metadata

Primary credential: none; Required config paths: none

The registry metadata under-states the operational requirement because the included script exits unless it can read Clawdbot auth profile files containing Antigravity account credentials.

User impactA user may believe the skill does not need credential-bearing local configuration, when it actually depends on existing Clawdbot auth profiles.

RecommendationTreat the skill as credential-using despite the metadata. The publisher should declare the auth profile paths and credential use explicitly.

Agentic Supply Chain Vulnerabilities

SeverityLowConfidenceHighStatusNote

SKILL.md

go install github.com/joargp/tablesnap/cmd/tablesnap@latest

The optional image-output workflow asks users to install a third-party tool at the moving @latest version, which is an unpinned dependency.

User impactIf the optional command is run, the installed code may change over time and comes from an external repository.

RecommendationSkip the optional tablesnap install unless needed, verify the repository, and pin a known version where possible.

Permission boundary

Checks whether tool use, credentials, dependencies, identity, account access, or inter-agent boundaries are broader than the stated purpose.

Identity and Privilege Abuse

SeverityHighConfidenceHighStatusConcern

check-quota.js

profiles = JSON.parse(fs.readFileSync(profilesPath, 'utf-8')); ... refresh: value.refresh ... refresh_token: refreshTokenValue

The code reads local Clawdbot auth profiles, extracts stored refresh tokens for google-antigravity accounts, and uses those tokens to obtain access tokens. That is high-impact credential/session access even though it is coherent with quota checking.

User impactInstalling or invoking this skill lets it use the stored Antigravity credentials for every configured account, exposing account identifiers and relying on the skill to handle refresh tokens safely.

RecommendationInstall only if you trust this skill with your Clawdbot Antigravity auth profiles. Prefer a version that clearly declares the credential/config requirement, limits account scope, and documents exactly which tokens and endpoints are used.