ClawHub
Back to skill
v1.0.0

Skylv File History Tracker

ReviewClawScan verdict for this skill. Analyzed May 2, 2026, 10:50 PM.

Analysis

The skill appears to do local file versioning, but it warrants review because it can persist plaintext snapshots of sensitive files such as .env files, API keys, or passwords.

GuidanceUse this only if you are comfortable with local hidden version history. Do not snapshot .env files, API keys, passwords, or private documents unless you understand that their contents may be retained in .fvsnap; add that directory to .gitignore and confirm any restore operation before allowing the agent to run it.

Findings (4)

Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.

Abnormal behavior control

Checks for instructions or behavior that redirect the agent, misuse tools, execute unexpected code, cascade across systems, exploit user trust, or continue outside the intended task.

Tool Misuse and Exploitation
SeverityLowConfidenceHighStatusNote
SKILL.md
`node version_engine.js restore <file> [version]` ... `Restores file content to the specified version` ... `Shows what changed before overwriting`

Restore is an intentional file-mutation feature. It is disclosed and appears purpose-aligned, but it can overwrite local files.

User impactIf invoked on the wrong file or version, local work or configuration could be reverted.
RecommendationRequire explicit user confirmation before restore operations, especially for configuration, credential, or production files.
Rogue Agents
SeverityLowConfidenceHighStatusNote
SKILL.md
`node version_engine.js watch <file-or-dir> [--interval ms]` ... `Automatically snapshots when hash changes` ... `Runs continuously until Ctrl+C`

Watch mode is a disclosed long-running behavior that automatically creates snapshots until stopped.

User impactThe tool may continue creating hidden history entries and retaining file contents while watch mode is running.
RecommendationUse watch mode only on intended paths and stop it when finished; avoid watching directories that contain secrets or large private files.
Agentic Supply Chain Vulnerabilities
SeverityInfoConfidenceMediumStatusNote
metadata
Source: unknown; Homepage: none ... No install spec — this is an instruction-only skill.

The provided registry metadata gives limited provenance and no install specification, although the included code is visible in the artifact set.

User impactUsers have less external provenance information to verify the author or source history.
RecommendationReview the included source before installing and prefer skills with clear source repositories or provenance when handling sensitive files.
Sensitive data protection

Checks for exposed credentials, poisoned memory or context, unclear communication boundaries, or sensitive data that could leave the user's control.

Memory and Context Poisoning
SeverityMediumConfidenceHighStatusConcern
SKILL.md
Stores snapshot in `.fvsnap/` ... "content": "..." // only for text files ... `node version_engine.js snap .env "before changing DB password"`

The skill documents persistent hidden snapshot storage containing file contents and explicitly shows use with secret-bearing files such as .env/password/API-key workflows.

User impactSecrets may be duplicated into hidden history files and remain there after the original file is changed, deleted, or rotated.
RecommendationAvoid snapshotting secret files unless you intentionally want local history; add .fvsnap to .gitignore, consider encryption or exclusions, and periodically delete old snapshots.