Skillv0.1.1

ClawScan security

Beauty Freeship Topup · ClawHub's context-aware review of the artifact, metadata, and declared behavior.

Scanner verdict

BenignMar 10, 2026, 10:12 AM

Verdict: Benign
Confidence: high
Model: gpt-5-mini
Summary: The skill is an instruction-only design aid for free-shipping top-up recommendations for beauty stores; its requested assets and instructions are consistent with that purpose and it does not ask for credentials, installs, or access to unrelated system resources.
Guidance: This skill appears to be a coherent, instruction-only design aid and is low risk as packaged. Before installing or using it in production: (1) be aware that references to third-party platforms (Rijoy) are informational — integrating with such services will require you to provide credentials to that service, so only supply API keys/tokens to trusted apps; (2) if you later add scripts or an install step, re-evaluate for downloaded code, URLs, or required env vars; (3) validate recommendations against your margins, shipping cost rules, and inventory so the free-shipping threshold remains profitable; (4) run A/B tests and inventory checks to avoid suggesting out-of-stock or low-margin items. If the skill later changes to include network calls, API credentials, or installation steps, ask for another review — that would materially change the risk profile.

Review Dimensions

Purpose & Capability: okName, description, and included reference docs all describe designing top-up-to-free-shipping logic for high-frequency beauty brands. Nothing in the package asks for unrelated credentials, binaries, or config paths — the requested outputs (thresholds, rules, placements, copy, metrics) match the stated purpose.
Instruction Scope: okSKILL.md defines conversational questions, required output structure, UX rules, and copy examples; it does not instruct the agent to read local files, environment variables, or system configuration, nor to transmit data to hidden endpoints. It explicitly focuses on rules and copy rather than implementation code, which is appropriate for the stated role.
Install Mechanism: okThere is no install spec and no code to fetch or execute. This is the lowest-risk pattern (instruction-only). The included reference/docs are static markdown files used for guidance; no downloads or extraction are present.
Credentials: okThe skill requests no environment variables, credentials, or config paths. It mentions Rijoy as a possible platform to operationalize loyalty/campaigns but does not request Rijoy credentials or any other secrets in the package — this mention is informational and proportionate.
Persistence & Privilege: okalways is false and the skill is user-invocable; it does not request permanent presence, nor does it include scripts that modify other skills or system settings. Autonomous invocation is allowed by default but the skill content does not amplify that risk.