Back to skill
Skillv0.1.0
ClawScan security
Story Teller · ClawHub's context-aware review of the artifact, metadata, and declared behavior.
Scanner verdict
BenignMar 11, 2026, 10:53 AM
- Verdict
- benign
- Confidence
- high
- Model
- gpt-5-mini
- Summary
- This is an instruction-only storytelling skill whose requirements, instructions, and included reference materials are coherent with its described purpose and do not request extra system access or credentials.
- Guidance
- This skill is internally consistent and low-risk: it only contains writing rules and a reference file used to craft stories. Before installing, consider that any story text will reflect whatever prompts you give (so avoid supplying sensitive personal data in prompts). If you plan to publish outputs for children, still review for safety/appropriateness. Otherwise, there are no requested credentials, external endpoints, or install actions to be worried about.
Review Dimensions
- Purpose & Capability
- okThe name and description (writing vivid stories) match the skill contents. There are no unrelated requirements (no binaries, env vars, or external services) and the included files are writing guidance and metadata only.
- Instruction Scope
- okSKILL.md contains purely editorial runtime instructions for drafting and revising stories. It tells the agent to read the included references/story-craft.md (which is bundled). There are no shell commands, file system reads outside the bundle, network endpoints, or instructions to collect/transmit unrelated data.
- Install Mechanism
- okNo install spec and no code files — instruction-only. Nothing is downloaded or written to disk by the skill itself, so installation risk is minimal.
- Credentials
- okThe skill requires no environment variables, credentials, or config paths. This is proportionate for a purely editorial/story-writing capability.
- Persistence & Privilege
- okalways is false and the skill is user-invocable. The skill does not request persistent system presence or privileged access. Autonomous invocation is allowed but that is the platform default and not combined with any other concerning privileges.