Back to skill
Skillv1.0.0
ClawScan security
Agent Workflow Builder · ClawHub's context-aware review of the artifact, metadata, and declared behavior.
Scanner verdict
BenignMar 14, 2026, 9:31 AM
- Verdict
- Benign
- Confidence
- high
- Model
- gpt-5-mini
- Summary
- The skill is an instruction-only guide to using an npm UI package (orbcafe-ui) and its requirements and instructions are consistent with that purpose.
- Guidance
- This skill is just documentation showing how to use an npm UI package; the primary remaining risk is the third-party package (orbcafe-ui) it tells you to install. Before installing, verify the package on the npm registry: check the package page, maintainers, download counts, repository/homepage, and recent versions. Inspect the package contents (npm pack + tar inspection) for any unexpected postinstall scripts or binaries, prefer pinning a version in a lockfile, and consider installing/testing in an isolated environment (container/CI job with minimal permissions). If the package or its homepage/repo is unavailable or looks suspicious (typosquatting, no repo, or unexpected postinstall behavior), avoid installing it.
Review Dimensions
- Purpose & Capability
- okThe name/description state this is an Agent Workflow Builder implemented with OrbCafe UI. The SKILL.md only instructs installing the orbcafe-ui npm package and importing CustomizeAgent — which is exactly what you'd expect for a UI integration.
- Instruction Scope
- okRuntime instructions are limited to installing the NPM package and a minimal usage snippet. The instructions do not ask the agent to read system files, environment variables, or exfiltrate data.
- Install Mechanism
- okThere is no built-in install spec (instruction-only). The SKILL.md recommends installing from the public npm registry (npm/pnpm), which is an expected mechanism for a React UI library. No downloads from arbitrary URLs or archives are instructed.
- Credentials
- okThe skill declares no required environment variables, credentials, or config paths — appropriate for a UI/component integration guide.
- Persistence & Privilege
- okThe skill does not request persistent or elevated privileges (always is false, no config writes or cross-skill modifications).