Back to skill
Skillv1.0.0
ClawScan security
Model Usage · ClawHub's context-aware review of the artifact, metadata, and declared behavior.
Scanner verdict
BenignFeb 11, 2026, 8:21 AM
- Verdict
- benign
- Confidence
- high
- Model
- gpt-5-mini
- Summary
- The skill is internally consistent with its stated purpose (summarizing CodexBar local cost JSON) and contains no obvious attempts to access unrelated secrets or exfiltrate data, though there are small metadata inconsistencies and you should trust the CodexBar CLI before running it.
- Guidance
- This skill appears to do what it says: run the CodexBar CLI (or parse cost JSON you supply) and summarize per-model costs locally. Before installing or running it: 1) Verify you trust the CodexBar CLI binary (the SKILL.md suggests a Homebrew tap 'steipete/tap/codexbar'); review that CLI's source or release channel so you know what it reads/transmits. 2) Note the small metadata mismatch: registry entry didn't list required binaries while SKILL.md expects 'codexbar' — ensure the platform will make the CLI available or pass cost JSON directly. 3) The script will parse any JSON you give it — don't feed it untrusted data you wouldn't want processed locally. 4) This skill has macOS installation guidance only; if you run Linux, check how you will obtain the codexbar output. If you confirm the CodexBar CLI is from a trusted source, the skill itself is coherent and limited in scope.
Review Dimensions
- Purpose & Capability
- noteThe skill's name/description match the included Python script and SKILL.md: it summarizes CodexBar local cost JSON by model. One minor inconsistency: the registry metadata at the top of the evaluation lists no required binaries, but the SKILL.md metadata and the script expect the 'codexbar' CLI to be available (and provides a brew cask install hint). Functionally this is expected for the task, but the registry-level requirements should declare codexbar.
- Instruction Scope
- okSKILL.md instructs running 'codexbar cost --format json' or providing a JSON file/stdin; the script either invokes the codexbar CLI or parses supplied JSON. The instructions do not request unrelated files, environment variables, or network endpoints. The references note where CodexBar stores local logs (~/.codex or ~/.config/claude), but the script itself does not directly read those paths — the codexbar CLI does. No instructions to transmit data to external endpoints are present.
- Install Mechanism
- noteThere is no formal install spec in the registry entry, but the SKILL.md metadata suggests installing CodexBar via a Homebrew cask (steipete/tap/codexbar). Installing from a known Homebrew tap is standard; however this implies macOS-only guidance (SKILL.md metadata lists darwin) and the skill lacks explicit Linux instructions. No arbitrary URL downloads or archive extraction in the skill itself were found.
- Credentials
- okThe skill requests no environment variables, secrets, or config paths in the registry. The script only reads provided JSON, stdin, or runs the codexbar CLI; it does not read unrelated environment variables or request credentials.
- Persistence & Privilege
- okalways is false and the skill does not request persistent system-level presence or modify other skills' configuration. It runs a local script and invokes the codexbar CLI when asked; autonomous invocation is allowed by default but not unusual here.