Skillv1.0.0

ClawScan security

academic-writing · ClawHub's context-aware review of the artifact, metadata, and declared behavior.

BenignFeb 15, 2026, 7:18 AM

Verdict: benign
Confidence: high
Model: gpt-5-mini
Summary: The skill is an instruction-only academic-writing assistant whose requirements and instructions are coherent with its stated purpose and do not request extra system access or credentials.
Guidance: This skill appears coherent with its purpose. Before installing: (1) confirm whether your agent has internet access and any necessary subscriptions if you expect it to verify paywalled papers (the skill asks for verified academic citations); (2) be aware that the skill enforces a strict output format (Markdown wrapped in <ama-doc> tags) which may affect downstream tools or UIs; (3) ask how template variables (e.g., $DATE$) are supplied at runtime if you rely on them; (4) remember that the skill forbids fabricated citations — if the agent cannot verify a source it should say so rather than invent references.
Findings: [no_scan_findings] expected: This is an instruction-only skill with no code files, so the regex-based scanner had nothing to analyze; absence of findings is expected and not evidence of safety by itself.

Purpose & Capability: okName/description (academic writing, citations, structure) align with the SKILL.md content. The skill requests no binaries, env vars, or config paths, which is proportionate for a writing-only helper.
Instruction Scope: noteThe SKILL.md imposes strict citation, sourcing, formatting, and output-tag requirements (Markdown wrapped in <ama-doc> tags) and directs the agent to verify citations and provide URLs to academic sources. This is reasonable for the purpose, but verifying citations will require network access and possibly access to subscription databases (e.g., SpringerLink, IEEE Xplore). The SKILL.md also references template variables ($DATE$, $SESSION_GROUP_ID) that may require runtime substitution; the skill gives no details on how those are provided.
Install Mechanism: okNo install spec and no code files — instruction-only — so nothing is written to disk or downloaded. Lowest-risk installation profile.
Credentials: okThe skill requires no environment variables, credentials, or config paths. That matches the stated purpose and avoids overbroad access.
Persistence & Privilege: okalways is false and the skill is user-invocable; it does not request permanent elevated privileges or modify other skills/configuration. Autonomous invocation (model invocation enabled) is the platform default and is not by itself a concern.