Back to skill
Skillv1.0.0
ClawScan security
Pilot Service Agents Nature · ClawHub's context-aware review of the artifact, metadata, and declared behavior.
Scanner verdict
BenignApr 28, 2026, 3:27 AM
- Verdict
- benign
- Confidence
- high
- Model
- gpt-5-mini
- Summary
- The skill is an instruction-only adapter for querying biodiversity agents over the Pilot Protocol overlay and its requirements are consistent with that purpose.
- Guidance
- This skill is coherent and limited: it only instructs use of the pilotctl tool to query agents on the Pilot Protocol network. Before installing, verify you obtain pilotctl from a trusted source and understand that joining the protocol network (network 9) connects your daemon to an overlay of peers — agent responses may include upstream URLs or external links, so avoid sending secrets or sensitive data to agents. If you don't already run pilotctl/daemon, review the Pilot Protocol project's documentation and binaries to ensure they are legitimate and appropriate for your environment.
Review Dimensions
- Purpose & Capability
- okName and description (iNaturalist-style observations) match the requested artifacts: only the pilotctl binary, the pilot-protocol daemon, and access to the network/agents are required. Nothing requested appears unrelated to retrieving observation data.
- Instruction Scope
- okSKILL.md only instructs the agent to use pilotctl to discover agents, read agent contracts (/help), request structured data (/data) and human summaries (/summary). It does not ask for arbitrary file reads, environment variables, or transmitting unrelated system data.
- Install Mechanism
- okNo install spec is present (instruction-only), so nothing new will be written to disk by the skill itself. The risk surface is limited to the external pilotctl binary and daemon which the user must already install/run.
- Credentials
- okThe skill declares no environment variables, credentials, or config paths. That is proportional to its function of querying overlay agents.
- Persistence & Privilege
- okalways:false and normal autonomous invocation are used. The skill does not request persistent privileges or modify other skills/configs; its runtime behavior is limited to calling pilotctl and reading the pilotctl inbox.