Skillv1.0.0

ClawScan security

AI 文本净化器（中文版） · ClawHub's context-aware review of the artifact, metadata, and declared behavior.

BenignMar 25, 2026, 9:02 AM

Verdict: benign
Confidence: high
Model: gpt-5-mini
Summary: The skill's code, instructions, and resources are coherent with its stated purpose (rule‑based Chinese AI text detection and rewriting); it requires no credentials or external installs and contains no obvious exfiltration or unrelated capabilities.
Guidance: This package appears to do what it claims: a rule-based Chinese AI-text detector and rewriter that runs locally. Before using: (1) Back up original files — aggressive mode and replacements can remove or alter content, possibly affecting nuance or factual details. (2) Expect non-deterministic synonym/rewrites due to random choices; run repeatedly if you need deterministic output. (3) The scripts read any file path you pass and write outputs to paths you specify — avoid pointing them at sensitive system files. (4) Optional spaCy usage only activates if spaCy and a Chinese model are installed; the package itself does not download or exfiltrate data. If you need additional assurance, review the included rule JSONs (resources/zh_rules.json) and synonyms to confirm replacements you want/ do not want, or run the detector in JSON/score-only mode first.

Purpose & Capability: okName/description match what the package implements: detection and rewriting of Chinese text. Required artifacts (rules, synonyms, detector and rewriter modules, CLI scripts) are appropriate and present. No unrelated credentials, binaries, or config paths are requested.
Instruction Scope: okSKILL.md instructs running local Python scripts (detect.py, transform.py, compare.py) with file input/output and optional user rules. The code implements exactly those operations (reading files, applying rules, writing output). Instructions do not direct the agent to read unrelated system files, send data to external endpoints, or access credentials.
Install Mechanism: okNo install spec. This is instruction+code that runs locally; all code is included and uses only local file I/O and standard library. Optional spaCy integration is present but only used if the library and model are installed—no network downloads or remote installs are invoked by the scripts themselves.
Credentials: okNo required environment variables, no credentials, and no config paths requested. The tool accepts user-supplied JSON rule files and writes output to user-specified paths (expected for this functionality).
Persistence & Privilege: okSkill is not forced-always, does not request persistent privileges, and does not modify other skills or system-wide agent settings. It only reads input files, optional user rule files, and writes output files provided by the user.