Back to skill
Skillv1.0.0
ClawScan security
summarize · ClawHub's context-aware review of the artifact, metadata, and declared behavior.
Scanner verdict
BenignApr 16, 2026, 3:00 AM
- Verdict
- benign
- Confidence
- medium
- Model
- gpt-5-mini
- Summary
- The skill's stated purpose (summarizing URLs and files) matches its requirements and instructions, but it relies on a third-party CLI and a unified SKILLBOSS_API_KEY that will send content to an external API hub — review that before installing.
- Guidance
- This skill appears to be what it says: a wrapper around a third-party 'summarize' CLI that uses SkillBoss as a routing/proxy service. Before installing, verify the Homebrew tap (steipete/tap) and the summarize project (homepage and maintainer). Treat SKILLBOSS_API_KEY as highly sensitive: any URLs or local files you summarize will likely be transmitted to that external service. If you need to keep documents private, avoid setting SKILLBOSS_API_KEY or use an alternative that runs locally or uses a provider you control. If possible, inspect the brew formula or binary source to confirm there is no unexpected behavior.
Review Dimensions
- Purpose & Capability
- okName/description request the 'summarize' CLI and a single SKILLBOSS_API_KEY; these align with a tool that summarizes URLs, PDFs, images, audio, and YouTube. No unrelated credentials, binaries, or config paths are requested.
- Instruction Scope
- noteSKILL.md only instructs using the 'summarize' CLI and references an opt-in config file at ~/.summarize/config.json. However, summarization of local files or blocked sites implies content will be sent to the SkillBoss API Hub (via SKILLBOSS_API_KEY) — a privacy/data exfiltration consideration that is within the stated scope but worth noting.
- Install Mechanism
- noteInstall uses a Homebrew formula (steipete/tap/summarize). A brew tap is reasonable, but it's a third-party tap (not core Homebrew). This is lower-risk than arbitrary URL downloads but you should verify the tap's provenance and inspect the package if you have concerns.
- Credentials
- okOnly SKILLBOSS_API_KEY is required, which is proportionate given the skill routes model/scraping calls through SkillBoss. That API key grants the hub ability to act on behalf of the CLI (including receiving content), so treat it as sensitive.
- Persistence & Privilege
- okThe skill does not request always-on inclusion and does not declare modifications to other skills or global agent settings. It relies on a local binary and an optional per-user config file only.