Ceo Advisor 2
Security checks across malware telemetry and agentic risk
Overview
This skill appears to provide CEO strategy guidance with optional local analysis scripts, with no evidence of credential use, network exfiltration, persistence, or destructive behavior.
Before installing, confirm the publisher/version because the registry metadata and embedded metadata differ. If you use the optional scripts, treat them as local code execution and be careful with sensitive company financial or strategy data.
VirusTotal
VirusTotal findings are pending for this skill version.
Risk analysis
Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.
A user may have difficulty confirming that this package is the exact registry entry they intended to install.
The embedded package metadata differs from the supplied registry metadata for ceo-advisor-2 version 1.0.0 with a different owner ID, creating a provenance/lineage ambiguity even though the visible content is purpose-aligned.
"ownerId": "kn7f2gr00xy51fj1nx2y64ckjs800mhn", "slug": "ceo-advisor", "version": "2.1.1"
Verify the publisher and version lineage before relying on the skill, especially if installing it from an unknown source.
Running the scripts executes code on the user's machine, though the provided artifacts do not show malicious or privileged behavior.
The skill documents user-directed execution of included local Python scripts. This is expected for the stated analysis purpose and the visible code is calculation-focused, but it is still local code execution.
python scripts/strategy_analyzer.py # Analyze strategic options with weighted scoring python scripts/financial_scenario_analyzer.py # Model financial scenarios
Run the scripts only from the reviewed package and avoid entering confidential business data unless you are comfortable processing it locally with this tool.