Skillv1.0.1

ClawScan security

Invoice Forge · ClawHub's context-aware review of the artifact, metadata, and declared behavior.

BenignMar 10, 2026, 2:14 PM

Verdict: benign
Confidence: high
Model: gpt-5-mini
Summary: The package is internally consistent with its stated purpose: a local, dependency-free Python invoice generator that reads/writes local JSONL files and emits HTML invoices — it does not request credentials, install remote code, or call external services.
Guidance: This package appears to be a straightforward, local invoice tool. Before installing or running: 1) Inspect any included shell/test scripts (e.g., test_basic.sh) to ensure they don't execute unexpected commands. 2) Run the tools as a non-privileged user and do not run them as root. 3) Keep backups of your data/ directory before migrating real invoices into it. 4) The tool does not send emails, generate PDFs, or integrate with payment gateways — you'll need separate tooling or scripts for those tasks. 5) If you plan to run it in production or share data, consider reviewing the code for additional hardening (concurrent write handling, input validation) and placing the data directory under version control or regular backups.

Purpose & Capability: okThe name/description (local invoice generation for freelancers) matches the included code and SKILL.md. The code implements client management, invoice creation, templating, and reporting using local JSONL files and HTML output. No unexpected cloud, payment gateway, or third-party credentials are requested.
Instruction Scope: okRuntime instructions are limited to copying the example config, editing config.json, and running the provided Python CLI scripts (create/list/status/report commands). The instructions only reference local files and the included scripts; they do not instruct reading unrelated system files, shell history, or sending data to external endpoints.
Install Mechanism: okThere is no install spec and no external downloads. This is instruction + source files only; nothing in the manifest indicates fetching or executing remote code during install.
Credentials: okThe skill requires no environment variables, credentials, or config paths beyond the local config.json and data files mentioned. That is proportionate to a local invoicing tool. There are no requests for secret-like env vars or unrelated service tokens.
Persistence & Privilege: okThe skill does not require always:true or system-wide modifications. It stores its own data under configurable local paths (data/ and output/); this is normal for a local CLI tool and within expected scope.