Back to skill
Skillv1.0.0
ClawScan security
Github · ClawHub's context-aware review of the artifact, metadata, and declared behavior.
Scanner verdict
BenignFeb 11, 2026, 8:21 AM
- Verdict
- benign
- Confidence
- high
- Model
- gpt-5-mini
- Summary
- This is an instruction-only skill that simply provides example gh CLI commands and does not request extra environment variables, installs, or other privileges—its requirements are coherent with its stated purpose.
- Guidance
- This skill is an examples-only guide for using the GitHub 'gh' CLI. Before installing or enabling it, make sure the agent environment actually has the 'gh' CLI installed and authenticated with a GitHub account or token. Be aware that any gh-authenticated credentials available to the agent determine what repositories/actions the skill can access—limit the token scope to the minimum necessary and only grant access to accounts/repos you trust. Because the skill runs shell-style gh commands, avoid enabling it in environments where you do not want automated commands to run against your GitHub resources.
Review Dimensions
- Purpose & Capability
- okThe skill's name and description match the SKILL.md content: it instructs use of the GitHub 'gh' CLI (issues, PRs, runs, gh api). It does not ask for unrelated credentials or binaries.
- Instruction Scope
- okAll runtime instructions are specific gh CLI invocations (gh pr, gh run, gh api, gh issue). They remain within the stated purpose and do not direct the agent to read arbitrary local files, environment variables, or to transmit data to external endpoints outside GitHub.
- Install Mechanism
- okThere is no install spec and no code files. This is the lowest-risk model for an instruction-only skill.
- Credentials
- noteThe skill declares no required env vars or credentials, which is reasonable for an instruction-only gh helper. However, effective use requires the 'gh' CLI to be installed and authenticated in the agent environment (e.g., gh auth login or GITHUB_TOKEN); the SKILL.md does not mention authentication or token scope, so users should ensure their gh credentials are present and appropriately scoped.
- Persistence & Privilege
- okalways is false and there is no install step or self-modifying behavior. The skill does not request persistent presence or elevated system privileges.