ClawSouls
ReviewAudited by ClawScan on May 1, 2026.
Overview
ClawSouls appears coherent for managing agent personas, but it can persistently change agent instruction files and relies on an external npm CLI, so souls should be reviewed before activation.
Install this skill only if you want your agent to manage and change its personas. Prefer trusted souls, review persona files before activation, be careful when publishing to the registry, and consider pinning or reviewing the external clawsouls CLI package in sensitive environments.
Findings (4)
Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.
A soul may change how the agent behaves across future interactions.
Souls are intended to become persistent behavioral context for the agent, so installing an unreviewed soul can affect future agent responses.
Manage Soul packages that define an AI agent's personality, behavior, and identity.
Review the soul files before activation, prefer trusted namespaces, and use restore if the new persona behaves unexpectedly.
Using the skill can replace the agent's active persona files.
The documented use command activates a persona and changes workspace identity files, which is expected for the skill but still affects agent behavior.
npx clawsouls use clawsouls/surgical-coder
Only run activation commands for souls you intend to make active, and keep backups or use the documented restore command.
The skill may execute code from the external clawsouls npm package when commands are run.
If the CLI is not installed locally, the wrapper can run the external npm package through npx without an interactive npm prompt. This is disclosed and central to the skill, but it means CLI behavior depends on the npm package.
exec npx --yes clawsouls "$@"
Install from a trusted package source, consider pinning a known version, and review the CLI package if your workspace is sensitive.
Publishing may upload a persona under the user's account or namespace.
Publishing and login are expected for a registry-backed persona manager, but they involve account authority and public or shared registry actions.
clawsouls publish ./my-soul/ # Publish to registry clawsouls login # Get auth token instructions
Confirm what will be published and use least-privilege account credentials where possible.