Skillv1.0.1

ClawScan security

Skylv Diff Viewer · ClawHub's context-aware review of the artifact, metadata, and declared behavior.

Scanner verdict

BenignApr 18, 2026, 4:37 AM

Verdict: benign
Confidence: high
Model: gpt-5-mini
Summary: The skill's code and instructions match its stated purpose as a local Node.js diff tool; there are no requested secrets, installs, or network endpoints, though there is a small mismatch around 'git' usage that you should verify.
Guidance: This skill appears to be a straightforward, local Node.js diff tool and is internally consistent. Before installing: (1) Review the remainder of diff_engine.js (the file was truncated in the manifest) to confirm it does not invoke network calls or child_process.exec unexpectedly (particularly for a 'git' subcommand). (2) Verify whether the 'git' integration requires the system git binary — if so, expect the skill to call an external process. (3) Don't pass sensitive file paths (SSH keys, password stores, etc.) to the tool unless you run it in a trusted or sandboxed environment. If you want extra assurance, run the script locally in an isolated container and inspect its behavior with representative inputs.

Review Dimensions

Purpose & Capability: noteThe skill is a local Node.js diff viewer (diff_engine.js) and the included code implements LCS diffing, renderers, and HTML export — coherent with the name/description. One minor inconsistency: SKILL.md shows a 'git' command (node diff_engine.js git ./repo --stat), but the registry metadata lists no required binaries; if the implementation invokes the system 'git' binary (child_process), the skill should declare that dependency. Other than that, required env/configs are appropriately empty.
Instruction Scope: okRuntime instructions limit actions to comparing files/directories and exporting HTML. The code reads files passed as arguments and renders diffs; this is expected. Note: like any file-diff tool, it will read arbitrary paths you provide — so avoid supplying sensitive file paths unless you trust the environment.
Install Mechanism: okNo install spec (instruction-only) and the repo includes a single pure-Node.js file with no external package downloads. That is low risk and proportionate to the stated functionality.
Credentials: okThe skill declares no environment variables, credentials, or config paths and the visible code uses only fs/path/crypto — crypto is plausibly used for binary file hashing. There are no signs of requests for unrelated secrets or external service credentials.
Persistence & Privilege: okalways is false and the skill does not request elevated persistence or attempt to modify other skills. Autonomous invocation is allowed (platform default) but the skill itself does not ask for persistent privileges.