Back to skill
Skillv1.0.1
ClawScan security
mov-toa · ClawHub's context-aware review of the artifact, metadata, and declared behavior.
Scanner verdict
BenignFeb 27, 2026, 1:39 PM
- Verdict
- benign
- Confidence
- high
- Model
- gpt-5-mini
- Summary
- The skill's claims (real‑time crypto news API) line up with its instructions (curl calls to a single external HTTPS endpoint); there are no demanded credentials, installs, or privileged behaviors that contradict its stated purpose.
- Guidance
- This skill is internally consistent with its stated purpose, but exercise normal caution: the API host (web-production-666f44.up.railway.app) is an external, unknown service — you cannot audit its server-side behavior from the skill alone. Do not send secrets or private data to the endpoints. If you plan to rely on this feed for trading decisions, validate the data by manually calling the endpoints first and confirm TLS/HTTP responses, provenance, and uptime. If you require stronger guarantees, ask the publisher for provenance (owner, repo/homepage, SLA) or prefer a well-known vendor with published credentials and code you can review.
Review Dimensions
- Purpose & Capability
- okThe name/description (millisecond crypto news) match the SKILL.md (HTTP endpoints for /news and /news_search). One minor inconsistency: the registry-level 'Requirements' reported no required binaries, but SKILL.md's metadata declares curl as required. Requiring curl is reasonable for an instruction-only HTTP client skill.
- Instruction Scope
- okRuntime instructions only show example curl GET/POST requests to the documented base URL and describe the API responses; they do not instruct reading local files, environment variables, or transmitting data to unrelated endpoints. No broad or vague 'gather context' directives are present.
- Install Mechanism
- okNo install spec and no code files — instruction-only skill. This is the lowest-risk install model because nothing is written to disk by the skill bundle itself.
- Credentials
- okThe skill requests no environment variables, secrets, or config paths. The API appears public (no API key shown). This is proportionate to a read-only news API integration.
- Persistence & Privilege
- okSkill is not always-included and does not request persistent or elevated privileges. Autonomous invocation is allowed (platform default) but the skill does not request additional persistence or modify other skills.