Back to skill
Skillv0.2.1
ClawScan security
NEIS School CLI · ClawHub's context-aware review of the artifact, metadata, and declared behavior.
Scanner verdict
BenignMar 15, 2026, 9:41 AM
- Verdict
- benign
- Confidence
- high
- Model
- gpt-5-mini
- Summary
- The skill's code, instructions, and optional environment access line up with its stated purpose (querying the NEIS OpenAPI); nothing requests unrelated credentials or installs arbitrary code.
- Guidance
- This skill appears coherent and limited to querying the official NEIS OpenAPI. If you install it: (1) only provide an NEIS_API_KEY if you have a NEIS API key and are willing to allow the CLI to use it; (2) be aware the CLI makes outbound HTTPS calls to open.neis.go.kr and may call local curl as a fallback (subprocess is used safely without a shell); (3) do not provide unrelated high-privilege secrets (AWS, DB passwords, etc.); (4) if you plan to run this in a multi-tenant or sensitive environment, review the included scripts yourself before use.
Review Dimensions
- Purpose & Capability
- okName/description (NEIS school info, meals, timetables) matches the bundled CLI and tests. The only external network access is to the NEIS OpenAPI (API_BASE_URL = https://open.neis.go.kr/hub). No unrelated services, credentials, or system resources are requested.
- Instruction Scope
- okSKILL.md instructions are narrowly scoped to running the provided Python CLI and optionally setting NEIS_API_KEY. The docs recommend --json for machine consumption and point to a local reference file for endpoint shapes. The runtime code does not read unrelated files or environment variables.
- Install Mechanism
- okThis is an instruction-first skill with no install spec (lowest risk). Code files are included in the bundle (script + tests), so nothing is downloaded at install time from external or untrusted URLs.
- Credentials
- okNo required env vars are declared; the code reads an optional NEIS_API_KEY from NEIS_API_KEY, which is appropriate for an API client. There are no requests for unrelated secrets (no AWS/GCP/other tokens).
- Persistence & Privilege
- okSkill is user-invocable only, not always-enabled; it does not modify other skills or system-wide settings. It performs transient actions (network requests) only when invoked.