Skillv1.0.0

ClawScan security

Bill Ackman Investing Skill · ClawHub's context-aware review of the artifact, metadata, and declared behavior.

BenignApr 15, 2026, 1:58 PM

Verdict: benign
Confidence: high
Model: gpt-5-mini
Summary: Instruction-only persona/strategy skill about Bill Ackman's activist investing style; it requests no installs, credentials, or unusual system access and its runtime instructions align with its stated purpose.
Guidance: This skill is an instruction-only persona that provides Bill Ackman–style investing frameworks and examples; from a security perspective it is low-risk because it asks for no installs or credentials. Before installing, note: (1) it's opinionated investment advice — verify claims and do your own research; (2) do not enter any real account credentials, API keys, or personal financial data into the agent when using this skill; (3) check the skill's source and license (metadata points to a GitHub repo) if provenance matters to you; (4) monitor for future updates — if a later version adds an install script, network endpoints, or environment-variable requirements, re-evaluate because that would change the security profile.

Purpose & Capability: okThe skill is a narrative/instructional 'cognitive operating system' for activist investing. There are no required binaries, env vars, config paths, or installs — appropriate for an instruction-only persona/knowledge skill. The metadata and included reference documents map to the described purpose.
Instruction Scope: okSKILL.md and the references present persona rules, examples, frameworks, and research guidance. They do not instruct the agent to read host system files, access unrelated environment variables, or exfiltrate data. The guidance to 'read filings' and perform deep due diligence is domain-appropriate and limited to investment research context (the included references supply much of that content).
Install Mechanism: okNo install spec and no code files beyond markdown — lowest-risk category. Nothing is downloaded or written to disk by an installer.
Credentials: okThe skill declares no required environment variables, credentials, or config paths. There are no requests for secrets or unrelated service tokens — proportional to a text-based investment-advice persona.
Persistence & Privilege: okalways:false and default agent invocation settings. The skill does not request persistent or elevated system presence and does not modify other skills' configs. Autonomous invocation is allowed by platform default but is not combined with any additional privileges here.