Skillv1.0.0

ClawScan security

Spaced Repetition Teaching · ClawHub's context-aware review of the artifact, metadata, and declared behavior.

Scanner verdict

SuspiciousMar 14, 2026, 5:14 AM

Verdict: suspicious
Confidence: medium
Model: gpt-5-mini
Summary: The skill's code and instructions mostly match its stated purpose (local spaced‑repetition on markdown flashcards), but there are coherence issues (a truncated fsrs.py self-test and in-place file writes) that warrant caution before installing.
Guidance: This skill appears to implement a local FSRS-based spaced repetition tool and does not request credentials or network access, which is coherent with its description. However: 1) Inspect fsrs.py before running — the source bundled into the skill looks truncated at the end (a stray 'p' and truncation noted), so the advertised self-test may fail; fix or obtain a complete fsrs.py from the upstream reference before relying on it. 2) The CLI scripts update the card file in-place. Back up your markdown card file before using the tools and avoid pointing them at any file you can't afford to be rewritten. 3) Run the scripts in a sandbox or with a copy of your cards first to confirm behavior and formatting. 4) Because the skill's source/origin is 'unknown', prefer to manually review the code (which is short, pure Python) and ensure no modifications are made to unexpected paths. If you want to proceed safely: verify Python 3.6+ is available, test on a copy of your card file, and fix or replace the truncated fsrs.py self-test implementation.

Review Dimensions

Purpose & Capability: noteName/description match the bundled Python scripts: the repo provides FSRS scheduling, 'due' listing, and review application. However, the SKILL.md advertises a runnable algorithm self-test (python scripts/fsrs.py) but the fsrs.py file appears truncated at the end (syntax/runtime issue), so the advertised self-test may not work as-is.
Instruction Scope: noteRuntime instructions and CLI scripts consistently operate only on a user-specified markdown card file: reading, parsing, computing FSRS state, and updating that file in-place. This file I/O behavior is expected for the skill, but it does mean the skill will overwrite the provided file; users should only point it at card files (not arbitrary system files) and should back up important files. The SKILL.md suggests the agent 'ask once' for a file when not specified — the CLI tools themselves require a file path argument, so the agent must implement prompting or pass a path.
Install Mechanism: okNo install specification is provided (instruction-only with included scripts). No external downloads or package installs are declared. Risk from installation is low, but the included code will be written to disk when the skill is installed (it already contains source files).
Credentials: okThe skill requires no environment variables, no credentials, and no special config paths. All operations are local and file-based, so requested privileges are proportionate to the stated purpose.
Persistence & Privilege: okThe skill is not marked 'always: true' and does not request system-wide configuration. It can be invoked autonomously by the agent (default), which is expected for skills; combine that with the file-write behavior if you are concerned about autonomous writes to user files.