Skillv0.1.0

ClawScan security

goodreads · ClawHub's context-aware review of the artifact, metadata, and declared behavior.

BenignFeb 17, 2026, 12:22 AM

Verdict: benign
Confidence: high
Model: gpt-5-mini
Summary: The skill's instructions, required resources, and behavior align with its stated purpose of automating Goodreads via the browser tool and do not request unrelated credentials or installs.
Guidance: This skill appears coherent and limited to automating Goodreads via the platform's browser tool. Before installing or using it, consider: (1) it may access content visible on your Goodreads pages (profile name, shelves, reviews) when you are logged in — do not provide credentials in chat; sign in manually in your browser if you want personalized actions; (2) the skill can be invoked by the agent, so avoid leaving sensitive Goodreads sessions open if you don't want the agent to access them; (3) there is no external install or extra credentials required, but the skill source/homepage is listed as unknown — if provenance matters, verify the publisher or review the skill files yourself; (4) Goodreads may present CAPTCHAs or rate-limiting which the skill cannot bypass; you may need to complete challenges manually. If you need, ask for a brief walkthrough of what data the skill will read from a page (so you can confirm you’re comfortable with that exposure).

Purpose & Capability: okName/description match what the skill does: browser automation for searching, reading details, recommendations, and shelf management on Goodreads. It does not request unrelated binaries, cloud credentials, or config paths.
Instruction Scope: okSKILL.md and reference docs stick to browser interactions on Goodreads (navigate, snapshot, act, screenshot). They explicitly forbid automating login credentials and limit actions to site content. No instructions to read local files, environment variables, or to transmit data to external endpoints other than Goodreads pages accessed by the browser tool.
Install Mechanism: okInstruction-only skill with no install spec and no code files to write to disk — lowest-risk installation footprint.
Credentials: okNo environment variables, secrets, or extra credentials are requested. Auth-required flows are handled by detecting login state via snapshots and prompting the user to sign in manually; the skill does not ask for or attempt to store user credentials.
Persistence & Privilege: okSkill does not request always:true, does not modify other skills or system settings, and has no install-time persistence requirements. It can be invoked autonomously (platform default), which is expected for skills of this type.