Back to skill
Skillv1.0.0
ClawScan security
Code Cache · ClawHub's context-aware review of the artifact, metadata, and declared behavior.
Scanner verdict
BenignFeb 12, 2026, 6:05 PM
- Verdict
- benign
- Confidence
- high
- Model
- gpt-5-mini
- Summary
- The skill's requirements and instructions align with its stated purpose (a Raysurfer-backed code cache); it requests a single Raysurfer API key and its behavior (search, fetch, upload, vote) is coherent with that purpose.
- Guidance
- This skill appears coherent: it talks to the Raysurfer API using the single RAYSURFER_API_KEY you provide and implements search/fetch/upload/vote for code snippets. Before installing, consider: 1) Trust the third party (Raysurfer): uploaded code and metadata will be transmitted to their service. 2) Sensitive data risk: any secrets or credentials embedded in code you upload could be leaked — audit or sanitize files before upload. 3) Execution risk: the skill writes retrieved code to disk so your agent or sandbox may execute it — run in an isolated sandbox and review code before execution. 4) Key management: store the API key with least privilege and be prepared to revoke it if needed. If these tradeoffs are acceptable, the skill is internally consistent with its stated purpose.
Review Dimensions
- Purpose & Capability
- okName/description, SKILL.md, README, and code all describe a Raysurfer-backed semantic code cache. The only required environment variable is RAYSURFER_API_KEY which directly matches the documented remote API usage.
- Instruction Scope
- noteInstructions and CLI operations are scoped to searching, downloading, writing code files to a cache directory, uploading code snippets, and voting — all expected for a caching service. Note: uploads will transmit user code to the external Raysurfer service (explicitly documented). Retrieved snippets are written to disk for execution by the agent/runner, which is expected but is a privacy/safety consideration (see guidance).
- Install Mechanism
- okNo install spec is present (instruction-only from the registry point of view) and the repo contains Python CLI code. There are no remote downloads or opaque installers referenced in SKILL.md/README; the code expects a standard 'raysurfer' Python package if used locally.
- Credentials
- noteOnly one credential is requested (RAYSURFER_API_KEY) which is proportionate to the described remote API usage. However, that key grants the skill network access to the external Raysurfer service and will be used to upload user code — any secrets inside code files could be transmitted.
- Persistence & Privilege
- okalways is false and the skill does not request persistent/system-wide privileges or modify other skills' configs. It writes cached files to a user-specified directory (default .code_cache), which is expected behavior.