Back to skill
Skillv1.2.0
ClawScan security
早餐推荐助手 · ClawHub's context-aware review of the artifact, metadata, and declared behavior.
Scanner verdict
BenignApr 3, 2026, 1:26 PM
- Verdict
- Benign
- Confidence
- high
- Model
- gpt-5-mini
- Summary
- The skill's requests and runtime instructions are internally consistent with a local breakfast recommender: it reads/writes files in a dedicated workspace and may create a cron job for scheduled recommendations.
- Guidance
- This skill appears coherent for a local breakfast recommender. Before enabling: 1) Review the files it will create/use: ~/.openclaw/workspace/breakfast-recommender/fridge.md, history.md, preferences.md. 2) If you enable scheduled recommendations, expect the skill to add a cron entry — check your crontab after installation and only allow it if you trust scheduled agent runs. 3) Confirm the agent process that runs via cron will run with the same user permissions you expect (no elevated privileges). 4) Back up or remove any sensitive data you do not want stored in the workspace. If you prefer not to allow persistent scheduled runs, decline the cron setup and use the skill on-demand.
Review Dimensions
- Purpose & Capability
- okName/description match the behavior: storing fridge, history, and preferences in ~/.openclaw/workspace/breakfast-recommender and producing breakfast recommendations is coherent with the stated purpose.
- Instruction Scope
- noteInstructions explicitly read and write files under ~/.openclaw/workspace/breakfast-recommender and may create a cron task to trigger recommendations. Reading/writing these files is expected; creating system cron jobs is a scope‑expanding action (persistent scheduling) that users should be aware of.
- Install Mechanism
- okNo install spec or external downloads — instruction-only skill, so nothing is written to disk beyond the data files it manages and any cron entry it creates.
- Credentials
- okThe skill requests no environment variables, credentials, or external config paths. File access is limited to a single dedicated workspace directory.
- Persistence & Privilege
- noteThe skill does not set always:true. However, it instructs creating cron jobs that persist and autonomously trigger agent runs — this is functionally reasonable for scheduled reminders but is a persistent system change that the user should review.