Back to skill
Skillv1.0.1
ClawScan security
Norman: Financial Overview · ClawHub's context-aware review of the artifact, metadata, and declared behavior.
Scanner verdict
BenignFeb 20, 2026, 10:26 AM
- Verdict
- benign
- Confidence
- medium
- Model
- gpt-5-mini
- Summary
- The skill's instructions, required calls, and stated purpose are internally consistent and proportionate, but it depends on an external 'norman-finance' connector (MCP) for data/access and declares no credentials itself — verify that connector and permissions before installing.
- Guidance
- This skill appears coherent for producing a business financial overview, but it depends on an external 'norman-finance' connector (MCP) to supply the actual account data and authentication. Before installing or enabling it: (1) verify the identity, trustworthiness, and privacy policy of the 'norman-finance' connector/provider; (2) check what credentials or account permissions the connector requires and who will control them; (3) ensure you consent to the agent accessing financial data and that access is limited to the accounts needed; and (4) confirm currency/locale expectations (EUR) match your business. If you cannot validate the MCP or its auth requirements, treat the skill cautiously.
Review Dimensions
- Purpose & Capability
- okName and description match the runtime instructions: the SKILL.md explicitly lists calls to get company details, balance, transactions, invoices, and tax info — exactly the data needed for a financial overview.
- Instruction Scope
- okInstructions only direct the agent to call a small, well-scoped set of finance-related functions and to format the output in EUR. There are no references to unrelated files, environment variables, system paths, or external endpoints in the SKILL.md itself.
- Install Mechanism
- okThis is an instruction-only skill with no install spec and no code files, so nothing is written to disk and there is no package download to review.
- Credentials
- noteThe skill declares no required environment variables or credentials. It does, however, list a dependency on an MCP connector ('norman-finance') in metadata. Accessing financial accounts normally requires authentication; the skill likely relies on the MCP to provide credentials/authorization. Confirm what the MCP requires and who controls those credentials before use.
- Persistence & Privilege
- okFlags show the skill is user-invocable, not always-included, and can be invoked autonomously (platform default). The skill does not request persistent/privileged system presence.