Skillv1.0.0

ClawScan security

Gearbox · ClawHub's context-aware review of the artifact, metadata, and declared behavior.

BenignFeb 28, 2026, 3:19 PM

Verdict: benign
Confidence: high
Model: gpt-5-mini
Summary: This skill is an instruction-only gearbox assessment guide whose requested inputs, scope, and lack of installs/credentials are consistent with its stated purpose.
Guidance: This is a text-only diagnostic recipe (no code or external installs), so the technical risk is low. Before relying on it in operations, confirm the threshold values and escalation triggers match your OEM/vendor guidance and your sensors' calibration; treat its shutdown recommendations as advisory and verify with on-site engineers before executing critical actions. Also confirm any automated workflows that consume this report include human review—this skill itself does not request credentials or system access, but automated actuation based on its output should be gated.

Purpose & Capability: okName and description match the SKILL.md: it is a diagnostic checklist and report formatter for gearbox health. No unrelated credentials, binaries, or installs are requested.
Instruction Scope: okRuntime instructions are limited to collecting five sensor/inspection inputs, comparing them to thresholds, correlating symptoms, and producing a structured report. The instructions do not ask to read system files, environment variables, or transmit data to external endpoints.
Install Mechanism: okNo install spec and no code files—this is instruction-only, so nothing is downloaded or written to disk. This is the lowest-risk install profile.
Credentials: okNo environment variables, credentials, or config paths are required. The requested inputs (visual, oil Fe, temp, vibration, acoustic) are appropriate for the stated diagnostic purpose.
Persistence & Privilege: okThe skill is not always-enabled and does not request persistent/system-wide changes. It does not ask to modify other skills or agent configuration.