ClawHub
Back to skill
v0.1.2

SlowMist Agent Security

BenignClawScan verdict for this skill. Analyzed May 1, 2026, 7:37 AM.

Analysis

This is an instruction-only security review framework with no code, install steps, or credential requirements; its main effect is to make the agent more conservative during security reviews.

GuidanceThis skill appears safe to install as an instruction-only security framework. Expect it to make the agent more cautious, use fixed report templates, and sometimes recommend blocking or pausing risky actions. If using the on-chain review features, be aware that address checks may rely on external risk-intelligence services.

Findings (2)

Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.

Abnormal behavior control

Checks for instructions or behavior that redirect the agent, misuse tools, execute unexpected code, cascade across systems, exploit user trust, or continue outside the intended task.

Agent Goal Hijack
SeverityLowConfidenceHighStatusNote
SKILL.md
This framework activates whenever the agent encounters external input that could alter behavior, leak data, or cause harm

The skill intentionally changes when the agent should enter a security-review mode. This is aligned with its stated purpose, but users should know it may reroute broad interactions into formal review flows.

User impactThe agent may apply conservative security-review behavior, standardized report formats, and refusal or confirmation requirements during relevant tasks.
RecommendationUse this skill when you want security-review behavior, and keep final decisions under human control for high-impact actions.
Sensitive data protection

Checks for exposed credentials, poisoned memory or context, unclear communication boundaries, or sensitive data that could leave the user's control.

Insecure Inter-Agent Communication
SeverityInfoConfidenceHighStatusNote
reviews/onchain.md
Before any on-chain interaction, query available risk intelligence: ... AML risk score | MistTrack API or similar

The on-chain review flow may involve querying an external risk-intelligence provider or another skill with blockchain addresses. This is purpose-aligned, but it is still an external data flow users should recognize.

User impactBlockchain addresses or transaction-related details may be checked against external AML/risk-intelligence services if such tools are available.
RecommendationConfirm which risk-intelligence provider is being used before sharing addresses that could be sensitive or linked to your identity.