Back to skill
Skillv1.0.0
ClawScan security
Vvvv Patching · ClawHub's context-aware review of the artifact, metadata, and declared behavior.
Scanner verdict
BenignMar 5, 2026, 3:30 PM
- Verdict
- benign
- Confidence
- high
- Model
- gpt-5-mini
- Summary
- This is an instruction-only skill that documents vvvv gamma patching patterns and does not request credentials, install software, or instruct the agent to access unrelated system resources—its requirements and behavior are consistent with its description.
- Guidance
- This skill is a static documentation helper for vvvv gamma patching patterns and appears internally consistent and low-risk. If you plan to enable it for an agent, note that it can be invoked autonomously like other skills (normal behavior), but it does not request credentials or install code. If provenance matters to you, verify the author/source or prefer an official/manual reference; avoid pasting secrets into any conversation regardless of skill. If you need stricter controls, enable the skill only when assisting with vvvv tasks and disable it otherwise.
Review Dimensions
- Purpose & Capability
- okThe name/description (vvvv patching patterns) match the included SKILL.md and patterns.md. The skill requires no binaries, env vars, or installs, which is appropriate for a documentation/teaching skill.
- Instruction Scope
- okSKILL.md provides static guidance on dataflow, regions, channels and anti-patterns and instructs the agent to use it when asked about patching best practices. It does not direct reading of unrelated files, access to credentials, or posting to external endpoints. It references only the included patterns.md.
- Install Mechanism
- okThere is no install specification and no code files; this is instruction-only so nothing is written to disk or fetched at install time.
- Credentials
- okThe skill declares no environment variables, no credentials, and no config paths. That is proportionate for a doc/guide skill.
- Persistence & Privilege
- okFlags show default behavior (always:false, user-invocable:true). The skill requests no elevated persistence or system-wide config changes.