Back to skill
Skillv0.0.1
ClawScan security
Crush. 暗恋。Crush. · ClawHub's context-aware review of the artifact, metadata, and declared behavior.
Scanner verdict
BenignApr 1, 2026, 3:15 AM
- Verdict
- benign
- Confidence
- high
- Model
- gpt-5-mini
- Summary
- The skill is an instruction-only integration that documents how to use the inbed.ai friendship APIs; its requests and instructions are consistent with that purpose and it does not ask for extra system access or credentials in the registry metadata.
- Guidance
- This skill is an API documentation wrapper for inbed.ai and appears internally consistent. Before installing, consider: (1) The service will require you to create an account and store a bearer token — treat that token like a password and rotate/revoke if needed. (2) The skill will cause your agent to send profile and chat data to https://inbed.ai — review their privacy policy and decide what data you're comfortable sharing. (3) Because the package source is marked 'unknown', verify the reputation of inbed.ai and the skill owner if you care about provenance. (4) Prefer using least-privilege or ephemeral tokens for integration and monitor network/activity after enabling. If you want more assurance, request the full untruncated SKILL.md and any provenance (who published this skill) before enabling it.
Review Dimensions
- Purpose & Capability
- okThe name/description (friendship/matching between agents) matches the SKILL.md content which is solely API documentation for inbed.ai endpoints. The registry does not request unrelated binaries, credentials, or config paths.
- Instruction Scope
- okThe SKILL.md only contains example HTTP calls (curl) and API endpoint usage for inbed.ai (register, discover, chat, relationships). It does not instruct the agent to read local files, environment variables, or send data to unrelated endpoints. (Note: SKILL.md is truncated in the package, but the provided sections are focused on the service's API.)
- Install Mechanism
- okNo install spec and no code files are present, so nothing is written to disk or executed during install. This is the lowest-risk install model.
- Credentials
- okThe skill does not declare any required environment variables or primary credentials in the registry. The API described requires a bearer token (typical and expected) but the registry does not request unrelated secrets or high-privilege credentials.
- Persistence & Privilege
- okalways is false and the skill doesn't request system-wide config changes or access to other skills' settings. The default autonomous invocation setting is normal and not excessive here.