Back to skill
Skillv1.0.0
ClawScan security
ExpenseLog Conversational Expense Tracking · ClawHub's context-aware review of the artifact, metadata, and declared behavior.
Scanner verdict
BenignMar 10, 2026, 10:00 PM
- Verdict
- benign
- Confidence
- high
- Model
- gpt-5-mini
- Summary
- The skill's code, instructions, and requirements are consistent with a local conversational expense logger and do not request unrelated credentials or external network access.
- Guidance
- This skill appears to be a simple local expense logger. Before installing/run: (1) review or run the included src/expense-log.js in a safe environment to confirm behavior, (2) note it writes to ./expenses.json by default — back up any existing file with that name or set a different dataFile path, (3) consider running it in a container or isolated workspace if you don't fully trust the author, and (4) be aware that errors during save are silently ignored by the code (risk of data not being persisted). There are no indications of network exfiltration or requests for secrets.
Review Dimensions
- Purpose & Capability
- okName/description match the provided code and SKILL.md: natural-language expense logging, auto-categorization, budgets, CSV export. The Node.js file implements these features and only reads/writes a local JSON file; nothing requested is out of scope.
- Instruction Scope
- okSKILL.md limits runtime actions to logging, reporting, and exporting. It does not instruct the agent to read unrelated system files, access other services, or transmit data externally. The embedded disclaimer and README align with the implementation (local storage).
- Install Mechanism
- okNo install spec is provided (instruction-only), and the included code is pure Node.js using only built-in 'fs'. No external downloads or package installs are required by the manifest.
- Credentials
- okThe skill declares no environment variables, no credentials, and no config paths. That matches the code which relies only on a local data file (default './expenses.json').
- Persistence & Privilege
- okThe skill is not marked 'always' and uses no special privileges. It writes and reads its own local data file only and does not modify other skills or global agent configuration.