High Performance Coding
AdvisoryAudited by Static analysis on May 13, 2026.
Overview
No suspicious patterns detected.
Findings (0)
Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.
The agent may suggest or run local diagnostic commands, and Docker reset examples could remove container working-tree changes if the user approves them blindly.
The skill may guide the agent toward local system inspection and includes a state-changing Docker cleanup command. This fits performance tuning, but cleanup/reset commands can delete untracked files inside the target container if run without review.
Use `htop` / `free -h` / `nvidia-smi` to see current state ... reset state between runs (`docker exec git checkout HEAD && git clean -fd`).
Allow read-only profiling/resource checks as needed, but require explicit confirmation before running cleanup, reset, or deletion commands.
Manual installation from an unverified repository could expose the user to different content than the reviewed registry package.
The registry metadata does not declare a source or homepage, while the README provides a manual GitHub clone path. This is not an automatic install risk, but it is a provenance detail users should verify if installing outside the registry.
Source: unknown; Homepage: none
Prefer the registry install, or verify the GitHub repository and revision before manually cloning it.