Skillv1.0.0

ClawScan security

SZZG007 Facebook Engage · ClawHub's context-aware review of the artifact, metadata, and declared behavior.

BenignApr 14, 2026, 8:31 AM

Verdict: Benign
Confidence: medium
Model: gpt-5-mini
Summary: The skill's instructions match its stated purpose (automating a browser to follow a Facebook page and post a comment); it is an instruction-only skill with no hidden installs or declared credentials, though it omits a few operational details you should check before use.
Guidance: This skill is internally consistent with its stated goal of automating follows and comments on Facebook, but check these practical and policy points before installing: (1) It assumes a browser automation bridge/extension (chrome-relay) and a logged-in Facebook session — ensure you have and trust that extension and that the account to be used is appropriate. (2) Automated engagement can violate Facebook terms of service or lead to account restrictions if used aggressively; follow the skill's own rate-limit guidance and avoid repetitive/spammy comments. (3) Because the skill can be invoked autonomously by the agent, restrict or review any automated runs you permit to prevent mass or repeated actions. If you need the skill to run in an environment without chrome-relay or without an authenticated browser, ask the developer for explicit dependency and authentication instructions before use.

Purpose & Capability: okName and description claim automated Facebook follow+comment; SKILL.md contains step-by-step browser actions (open URL, locate follow button, click, find latest post, type comment, submit). The requested capabilities align with the stated purpose.
Instruction Scope: noteInstructions are narrowly scoped to driving a browser to perform follow and comment actions and include error handling and rate-limit guidance. They reference a browser automation API (browser open/act/snapshot) and the chrome-relay profile/extension; the skill does not instruct reading unrelated files or environment variables. However, it implicitly requires a logged-in Facebook session and an available browser automation bridge (chrome-relay), which are not explicitly documented as required inputs.
Install Mechanism: okNo install spec and no code files — lowest-risk format. Nothing is downloaded or installed by the skill itself.
Credentials: noteThe skill declares no credentials or env vars, which is reasonable for an instruction-only browser automation skill. But it implicitly depends on an authenticated Facebook session and a browser extension/relay (chrome-relay). The absence of explicit declarations for those dependencies is a documentation gap to be aware of.
Persistence & Privilege: okalways is false and the skill is user-invocable. It does not request persistent system presence or modify other skills' configs.