Back to skill
Skillv1.0.0
ClawScan security
Reef Negotiation · ClawHub's context-aware review of the artifact, metadata, and declared behavior.
Scanner verdict
BenignFeb 12, 2026, 8:24 PM
- Verdict
- benign
- Confidence
- high
- Model
- gpt-5-mini
- Summary
- This is an instruction-only negotiation skill that contains negotiation frameworks and produces artifacts in the agent workspace; it requests no installs, credentials, or unusual privileges and appears consistent with its stated purpose.
- Guidance
- This skill is instruction-only and appears coherent for negotiation help. Before installing: (1) be aware outputs are saved to workspace/artifacts/ — avoid storing client PII there if you don't want it persisted; (2) if you do not want the agent to call this skill without explicit approval, adjust invocation settings or disable autonomous invocation; (3) negotiation advice is general guidance — validate legal/contract language with a lawyer when needed.
Review Dimensions
- Purpose & Capability
- okThe SKILL.md provides negotiation frameworks (Chris Voss style, Ackerman model, rate/scope defenses) which matches the implied purpose of a negotiation assistant. The skill declares no binaries, env vars, or installs that would be unrelated to that purpose.
- Instruction Scope
- okRuntime instructions are limited to negotiation guidance and producing outputs under workspace/artifacts/. There are no instructions to read system files, environment secrets, or to transmit data externally beyond the agent's normal behavior. Note: artifacts saved to workspace may contain client data, so treat them as sensitive.
- Install Mechanism
- okNo install spec or code files are present (instruction-only), so nothing is written to disk or downloaded during install. This is the lowest-risk install model.
- Credentials
- okThe skill requests no environment variables, credentials, or config paths. There is no apparent need for access to external APIs or secrets to perform the stated task.
- Persistence & Privilege
- okalways is false and the skill is user-invocable (normal). The skill does not request permanent presence or modify other skills' configs. Note: by platform default the agent may invoke the skill autonomously unless you change that setting.