Chuangye
AdvisoryAudited by Static analysis on May 9, 2026.
Overview
No suspicious patterns detected.
Findings (0)
Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.
NoteHigh Confidence
ASI02: Tool Misuse and ExploitationWhat this means
The agent may search the skill's bundled book file to answer questions; the artifacts do not show it searching user files or changing data.
Why it was flagged
The skill suggests using a local search command to inspect its bundled reference file. This is purpose-aligned and scoped, but users should notice that the agent may perform local reference lookup.
Skill content
先读取 `references/book.md` 中相关内容(用 grep 快速定位相关段落)
Recommendation
Allow this if you are comfortable with local lookup over the bundled references; keep use limited to the skill directory.