Medical Auditor
Security checks across static analysis, malware telemetry, and agentic risk
Overview
This is a coherent instruction-only medical billing audit skill, but it handles sensitive hospital records and may draft findings for an external message.
This skill appears safe to install as an instruction-only audit helper. Before using it, confirm you are authorized to process the hospital log file, avoid including patient identifiers unnecessarily, and review any drafted WhatsApp message carefully before sending it through an approved channel.
Static analysis
No static analysis findings were reported for this release.
VirusTotal
VirusTotal findings are pending for this skill version.
Risk analysis
Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.
The agent may read and include sensitive hospital, surgical, or billing details in its audit output.
The skill is explicitly designed to read and summarize medical procedure and billing data, which can be sensitive. This is purpose-aligned and limited to a named file, but users should notice the sensitivity of the context being processed.
Look for the file named `hospital_logs.json` in the workspace. ... Extract the "Surgeon Notes" or "Procedure Summary." ... Extract the "Billed Items."
Use only with files the user is authorized to analyze, and review outputs for patient identifiers or other sensitive details before sharing.
If the drafted message is sent without review or redaction, sensitive audit or patient-related details could be shared outside the intended system.
The artifact only asks for a draft, not automatic sending, but it may cause audit findings derived from medical and billing records to be prepared for an external communication channel.
Draft a WhatsApp message to the Hospital Administrator outlining the findings and asking for approval to update the bill.
Review and redact the drafted message before sending, and use an approved communication channel for medical or billing information.