Back to skill
Skillv1.0.0
ClawScan security
Brainstorm · ClawHub's context-aware review of the artifact, metadata, and declared behavior.
Scanner verdict
BenignMar 3, 2026, 5:25 PM
- Verdict
- benign
- Confidence
- high
- Model
- gpt-5-mini
- Summary
- This is an instruction-only brainstorming skill whose files, runtime instructions, and requirements are consistent with its stated purpose and request no extra privileges or credentials.
- Guidance
- This skill appears safe and coherent: it only contains instructions for producing brainstorming outputs and asks for no credentials or installs. Two small things to check before installing: (1) the _meta.json ownerId differs from the registry ownerId — confirm the package provenance if you care about strict ownership tracking; (2) the SKILL.md refers to related modes/skills ('diverge', 'loop') that aren't bundled here — expect broken cross-references or missing behavior if you rely on those. Otherwise you can use this skill without granting extra privileges or secrets.
Review Dimensions
- Purpose & Capability
- okThe name/description (generate ideas, adapt depth/structure) match the SKILL.md, modes.md, and prompts.md. The skill requests no binaries, env vars, or config paths, which is appropriate for an idea-generation helper. Minor metadata inconsistency: _meta.json.ownerId is different from the registry metadata ownerId listed in the package header — likely a benign metadata mismatch but worth noting.
- Instruction Scope
- okSKILL.md instructs only on how to generate outputs, when to ask a single clarifying question, and how to structure results. It does not instruct the agent to read files, access environment variables, contact external endpoints, or collect unrelated data. It references related modes/skills ('diverge', 'loop') that are not included; this is a usability/clarity issue, not a security risk.
- Install Mechanism
- okNo install spec and no code files — instruction-only. Nothing is downloaded or written to disk by the skill itself.
- Credentials
- okThe skill declares no required environment variables, credentials, or config paths, and the instructions do not reference any secrets. The access requested is minimal and proportional to the purpose.
- Persistence & Privilege
- okThe skill does not request always:true and uses default invocation settings. It does not modify other skills or system settings. Autonomy settings are the platform defaults and are not a concern here.