Back to skill
Skillv1.0.0
ClawScan security
WoW Lookup · ClawHub's context-aware review of the artifact, metadata, and declared behavior.
Scanner verdict
SuspiciousFeb 17, 2026, 3:13 PM
- Verdict
- suspicious
- Confidence
- medium
- Model
- gpt-5-mini
- Summary
- The skill's behavior mostly matches a WoW lookup CLI, but there are inconsistent and potentially risky installation instructions (a symlink into /usr/local/bin pointing to a non-existent local 'wow' binary) and no provided executable, so the package is incoherent and should be vetted before installing.
- Guidance
- Do not install or run the symlink command as-is. The SKILL.md expects a local 'wow' CLI but the package contains no executable — the install step would create /usr/local/bin/wow pointing at $(pwd)/wow, which could fail or overwrite an existing binary. Ask the publisher for source code or a release (GitHub/github releases, official project site) before proceeding. If you still want to try it, inspect the 'wow' binary first (from a trusted source), avoid running the ln command with elevated privileges until you verify its target, and only provide Blizzard or Warcraft Logs credentials if you trust the skill's origin. Consider running in a sandbox or container and request the skill author to include code or a trustworthy install mechanism (e.g., official release URL or package manager).
Review Dimensions
- Purpose & Capability
- okName, description, and runtime commands all align with a World of Warcraft character lookup tool (Raider.io, optional Blizzard and Warcraft Logs integration). Requested runtime tools (curl, jq) and optional OAuth credentials match the described external services.
- Instruction Scope
- concernThe SKILL.md instructs the agent to run a local 'wow' CLI (e.g., 'wow lookup ...') but the skill bundle contains no binary or code implementing that CLI. The instructions also include an install step that creates a symlink to $(pwd)/wow — which implies a local executable that is not present in the package. This mismatch means the runtime instructions are incomplete or inconsistent.
- Install Mechanism
- concernThe only install action in the SKILL.md is a shell symlink: 'ln -sf $(pwd)/wow /usr/local/bin/wow'. That writes into a system-wide path (/usr/local/bin) and will require appropriate permissions; it can also overwrite an existing /usr/local/bin/wow. The command references a local file in the current working directory that is not included in the skill bundle, increasing the chance of failure or misuse if executed blindly.
- Credentials
- okNo required secrets are listed. Optional environment variables (BLIZZARD_CLIENT_ID/SECRET, WCL_CLIENT_ID/SECRET) are appropriate for the optional integrations named in the description. Declared config defaults (WOW_REGION, WOW_CONFIG) are reasonable.
- Persistence & Privilege
- concernThe symlink install modifies a system-wide PATH location, creating persistent system presence outside the skill runtime. Although 'always' is false and autonomous invocation is normal, this install step grants the skill the ability to place or replace a binary on the system, which is more privilege than expected for an instruction-only descriptor.