ClawHub

Contract Risk Scan

v1.0.1

Scan contracts for common risk clauses and potential issues. Use when the user asks about 合同风险、合同审查、条款风险、合同问题、帮我看合同、合同检查, or wants to identify problematic cl...

0· 206·2 current·2 all-time
byhaidong@harrylabsj
Security Scan
VirusTotalVirusTotal
Benign
View report →
OpenClawOpenClaw
Benign
high confidence
Purpose & Capability
The name and description (contract risk scanning) match the provided code and reference data: regex-based risk patterns, scanning functions, examples, and test cases. Required environment, binaries, and config paths are empty — appropriate for a text-scanning tool.
Instruction Scope
SKILL.md restricts behavior to receiving contract text, identifying contract type, scanning against documented risk patterns, and reporting results. The runtime code performs only local regex scans and text formatting; it does not read unrelated system files or attempt network transmission. The privacy claim (no data stored/transmitted) aligns with the code (no network or persistence calls).
Install Mechanism
There is no install spec (skill is instruction/code-only). The package contains Node.js scripts and a small Python example and tests — all local files. No external downloads, package installs, or extracted archives are present.
Credentials
The skill requests no environment variables, credentials, or config paths. All processing is local and the number and type of environment requests are proportionate to the stated purpose.
Persistence & Privilege
The skill is not always-enabled and does not request elevated or persistent privileges. It does not modify other skills or system-wide settings. Files included are standard scripts and tests for local use.
Assessment
This appears to be a straightforward local contract-risk scanner: it uses regex rules to flag common problematic clauses and contains tests and an example script. Before installing, consider: (1) It is a preliminary, non-exhaustive tool and not legal advice — consult a lawyer for important contracts. (2) The scanner may produce false positives/negatives because it relies on pattern matching; review flagged context manually. (3) If you plan to run the included Node script in an environment where contract text is sensitive, ensure the runtime environment (your machine or agent) is trusted — the repository itself does not transmit or store data, but your agent or other installed tooling might. Otherwise the skill is internally coherent and proportionate to its stated purpose.

Like a lobster shell, security has layers — review code before you run it.

contractvk97dknh1htaz3bah3tvs7vkvm5833fdvlatestvk970d03ekbjmbvdjh0rk383a9s8320hflegalvk97dknh1htaz3bah3tvs7vkvm5833fdvreviewvk97dknh1htaz3bah3tvs7vkvm5833fdvriskvk97dknh1htaz3bah3tvs7vkvm5833fdv
206downloads
0stars
2versions
Updated 1mo ago
v1.0.1
MIT-0
haidong@harrylabsj
contractlatestlegalreviewrisk
Download

Contract Risk Scan

Overview

This skill helps users identify common risk clauses and potential issues in contract drafts. It scans for problematic language, ambiguous terms, and high-risk provisions that may need attention.

⚠️ Important Disclaimer: This tool provides preliminary risk identification only. It does not constitute legal advice, nor does it replace professional legal counsel. Always consult a qualified attorney for important contract decisions.

When to Use This Skill

  • Reviewing a contract draft before signing
  • Identifying potentially risky clauses
  • Getting a quick overview of contract concerns
  • Preparing questions for legal consultation

Limitations

  • Only identifies common risk patterns, not all possible issues
  • Cannot assess context-specific risks
  • Does not evaluate enforceability under specific jurisdictions
  • Not a substitute for professional legal review

Workflow

  1. Receive contract text — User provides contract content or specific clauses
  2. Identify contract type — Determine if it's a service agreement, NDA, employment contract, lease, etc.
  3. Scan for risks — Check against common risk patterns (see references/common-risks.md)
  4. Report findings — Present identified risks with severity levels and explanations
  5. Suggest next steps — Recommend consulting an attorney for high-risk items

Risk Severity Levels

LevelDescriptionAction Recommended
🔴 CriticalHigh-risk clauses that could cause significant harmConsult attorney immediately
🟡 WarningPotentially problematic clauses needing reviewDiscuss with attorney
🟢 AdvisoryMinor issues or suggestions for improvementConsider revisions

Common Risk Categories

1. Liability & Indemnification

  • Unlimited liability clauses
  • One-sided indemnification
  • Missing liability caps

2. Termination

  • No termination for convenience
  • Excessive notice periods
  • Harsh termination penalties

3. Payment Terms

  • Net 60+ payment terms
  • No late payment penalties
  • Unclear payment schedules

4. Intellectual Property

  • Unclear IP ownership
  • Overly broad IP assignments
  • Missing license grants

5. Confidentiality

  • Indefinite confidentiality obligations
  • Unclear definition of confidential info
  • Missing return/destruction clauses

6. Dispute Resolution

  • Unfair venue selection
  • Missing arbitration/mediation clauses
  • One-sided attorney fee provisions

Usage

Basic Scan

"帮我扫描这份合同的风险"
"检查这个条款有没有问题"
"合同风险审查"

Specific Focus

"重点看付款条款的风险"
"检查知识产权相关条款"
"看看违约责任部分"

Output Format

For each identified risk:

  • Clause location (section/paragraph reference)
  • Risk description (what's problematic)
  • Severity level (🔴🟡🟢)
  • Suggested action (what to consider)

References

For detailed risk patterns and examples, see:

Privacy Note

Contract content is processed for risk analysis only. No contract data is stored or transmitted to third parties.

Comments

Loading comments...