Skillv1.0.0

ClawScan security

reflectt-node · ClawHub's context-aware review of the artifact, metadata, and declared behavior.

BenignMar 11, 2026, 9:26 AM

Verdict: benign
Confidence: medium
Model: gpt-5-mini
Summary: The skill's instructions are internally consistent with a local collaboration server running on localhost:4445, but there is no install or source code to verify what that server actually is—confirm the local service and data before trusting it.
Guidance: This SKILL.md simply tells an agent how to talk to a local server on port 4445; it does not include server code or an installer. Before enabling the skill: (1) verify you actually run a trusted reflectt server on localhost:4445 (check what binary/process is bound to that port), (2) inspect the server code or installation source (none provided here) to understand how data in ~/.reflectt/data/ is stored and protected, (3) confirm the server is not exposed to external networks, and (4) be aware the agent may call these local endpoints automatically during heartbeats—if a different local service is listening on 4445, the agent could interact with it. Because the registry entry has no source/homepage, exercise caution and only enable this skill if you control or trust the local service it targets.

Purpose & Capability: okThe SKILL.md documents curl commands for messaging, tasks, presence, health, and a dashboard on http://127.0.0.1:4445, which matches the skill name and description of a local team collaboration server. No unrelated services, credentials, or binaries are requested.
Instruction Scope: noteAll runtime instructions are limited to HTTP calls to localhost:4445 and task/chat workflow rules. The doc mentions the data directory (~/.reflectt/data/), but does not instruct the agent to read arbitrary host files or environment variables. It does assume a running local service and that agents will call local endpoints autonomously (heartbeat behavior).
Install Mechanism: okThere is no install spec or code to run; the skill is instruction-only. That lowers installation risk but also means the registry has no bundled server to inspect—users must already have (or separately install) a server that listens on port 4445.
Credentials: noteNo environment variables, credentials, or config paths are required. The single filesystem path referenced (~/.reflectt/data/) is plausible for a local service but is not declared as required; the skill does not request secrets or unrelated credentials.
Persistence & Privilege: okThe skill does not request always:true or system-level modifications. It is allowed to be invoked autonomously (platform default), which is expected for an agent-facing skill that polls local endpoints.