Skillv1.0.0

ClawScan security

Camsnap · ClawHub's context-aware review of the artifact, metadata, and declared behavior.

Scanner verdict

SuspiciousFeb 11, 2026, 8:20 AM

Verdict: suspicious
Confidence: medium
Model: gpt-5-mini
Summary: The skill mostly matches its camera-capture purpose, but there are inconsistencies (missing declared config/install requirements) and a few moderate risks you should check before installing.
Guidance: This skill appears to do what it says (capture from RTSP/ONVIF), but there are a few things to check before installing: 1) Verify the source of the camsnap binary — SKILL.md references a third-party Homebrew tap (steipete/tap); inspect that tap and the formula to confirm it points to a trustworthy upstream release. 2) Be aware camsnap will store camera credentials at ~/.config/camsnap/config.yaml — ensure you’re comfortable with how it stores secrets (plaintext vs encrypted) and limit access to that file. 3) Review what 'watch --action' runs (it can execute arbitrary commands on motion events); avoid using unsafe actions or give it minimal permissions. 4) Because the registry metadata omitted the install/config details that appear in SKILL.md, prefer to inspect the camsnap project/repo directly before granting it access or installing the binary.

Review Dimensions

Purpose & Capability: noteThe skill's stated purpose (capture frames/clips from RTSP/ONVIF) aligns with the commands shown (snap, clip, watch) and the need for ffmpeg and a camsnap binary. However the registry metadata reported no install spec or config paths, while the SKILL.md explicitly refers to ~/.config/camsnap/config.yaml and a Homebrew formula—an inconsistency in declared requirements.
Instruction Scope: noteSKILL.md only instructs use of the camsnap CLI and mentions creating a local config file with camera credentials. It does not ask the agent to read unrelated system files. One area to note: the 'watch --action' usage implies arbitrary actions/commands can be run on motion events — that capability is normal for a camera tool but increases attack surface and should be reviewed.
Install Mechanism: concernThe SKILL.md includes a Homebrew install entry (steipete/tap/camsnap). That is a third-party tap, not a core Homebrew formula, which is moderate risk because taps are less vetted than official releases. Also the registry metadata earlier said 'No install spec', so there's an incoherence between registry and SKILL.md about installation.
Credentials: concernThe skill declares no required environment variables, which is reasonable, but instructs users to create a config file (~/.config/camsnap/config.yaml) containing camera usernames/passwords. The registry did not declare this required config path. Storing camera credentials locally (likely plaintext) is expected for the function but should be explicit and verified before use.
Persistence & Privilege: noteThe skill does not request always:true or broad system privileges and appears to only create/use its own config file in the user's home directory. This is typical and not excessive, though the 'watch' action that can run arbitrary commands increases the practical privilege of whatever binary is installed.