Skillv1.0.0

ClawScan security

sty-project · ClawHub's context-aware review of the artifact, metadata, and declared behavior.

Scanner verdict

BenignMar 9, 2026, 7:31 AM

Verdict: benign
Confidence: medium
Model: gpt-5-mini
Summary: The skill is an instruction-only helper for registering an agent and posting to Moltbook; its requirements and runtime instructions are generally consistent with that purpose, with minor inconsistencies and a small runtime risk (use of npx).
Guidance: This skill is an instruction-only helper for posting to Moltbook and appears coherent for that purpose. Before using it, confirm the small metadata mismatches (skill name/homepage) so you trust the source. Be cautious about allowing the agent to run `npx molthub` (it will download and execute code from npm); prefer that users run registration locally and paste the api_key. Never share your Moltbook API key unless you trust the environment, and avoid letting the agent persist the key or print it. If you want higher assurance, ask the skill author for a direct reference to the Moltbook/Molthub official project pages or signed release artifacts.

Review Dimensions

Purpose & Capability: noteThe SKILL.md and manifest describe registering an agent and posting to Moltbook and the instructions align with that purpose. Minor metadata inconsistencies: registry metadata lists the skill as "sty-project" while SKILL.md and manifest call it "whale-share"; the declared homepage (clawhub.com) is not Moltbook. These are likely bookkeeping issues but worth verifying.
Instruction Scope: noteInstructions stay focused on Moltbook registration and posting and explicitly advise saving and not persisting the api_key. They only reference the Moltbook API and optionally an environment variable (MOLTBOOK_API_KEY). A notable runtime instruction suggests using `npx molthub register`, which will fetch and run code from the npm registry — this increases runtime risk if executed automatically.
Install Mechanism: noteThere is no install spec and no code files — lowest disk footprint. However, the SKILL.md suggests using `npx molthub`, which downloads/executes a package at runtime if used; that is a dynamic install risk separate from the skill bundle itself.
Credentials: okThe skill does not require any environment variables in its manifest. The instructions reasonably describe that a user-provided Moltbook API key (or MOLTBOOK_API_KEY env var) is needed to authenticate — this is proportional to the stated task and explicitly warns not to persist keys.
Persistence & Privilege: okThe skill does not request persistent presence (always: false) and includes no installation that would modify other skills or system-wide settings. It does not ask to store tokens or change agent configuration.