Skillv1.0.0

ClawScan security

Archon Brain · ClawHub's context-aware review of the artifact, metadata, and declared behavior.

BenignApr 30, 2026, 3:16 AM

Verdict: benign
Confidence: high
Model: gpt-5-mini
Summary: The skill's files, instructions, and minimal Node validator are coherent with its stated purpose as a local, file-based personal chief-of-staff; it requests no credentials or network installs and only needs read/write access to a workspace and ability to run Node/shell commands.
Guidance: This skill is internally consistent: it expects to read/write structured Markdown files in a workspace and includes a small local Node script to validate starter files. Before installing or enabling, consider: 1) the agent will need permission to read/write the specified workspace directories—avoid running it against folders containing sensitive secrets unless you want those records stored; 2) review the starter files and templates to ensure no private data is included; 3) if you run the included validation script, run it in a safe environment (it only checks for file existence). No network calls, credentials, or external installers are requested by the package itself. If you need stronger guarantees, run the skill in an isolated project folder or repo and inspect any future code additions for network or credential access.

Purpose & Capability: okName and description match the behavior: it is a workspace-backed management copilot that reads and writes Markdown records. There are no unrelated env vars, binaries, or external services requested.
Instruction Scope: okSKILL.md instructs the agent to read and write files within the named workspace directories and to follow provided templates/schemas. That scope aligns with the stated purpose; it does not instruct reading unrelated system files, environment secrets, or sending data externally.
Install Mechanism: okNo install spec is present (instruction-only). The only code file is a small local validation script (scripts/validate.js) that checks for starter files; there are no downloads or external installers.
Credentials: okThe skill declares no required environment variables, primary credential, or config paths. Its runtime needs are limited to workspace file read/write and optionally running Node (the validation script). This is proportional to its functionality.
Persistence & Privilege: okalways:false and normal autonomous invocation are used. The skill writes and manages files within its own workspace directories and does not request system-wide configuration or other skills' credentials.