Back to skill
Skillv1.0.1
ClawScan security
WebSim API · ClawHub's context-aware review of the artifact, metadata, and declared behavior.
Scanner verdict
BenignMar 5, 2026, 4:18 AM
- Verdict
- benign
- Confidence
- high
- Model
- gpt-5-mini
- Summary
- The skill is an instruction-only adapter for WebSim's public REST API and its declared requirements and behavior are consistent with that purpose.
- Guidance
- This skill is an instruction-only adapter for WebSim's public API and appears coherent. Before using it: (1) verify the domain (https://websim.com) and that you trust the skill source, since the package lists no homepage or publisher information; (2) if you plan to post comments, the skill will need your WebSim auth token — provide it only when you trust the skill and avoid reusing high-privilege tokens (use limited-scope or revocable tokens if possible); (3) because the skill can be invoked by the agent, be cautious about giving persistent credentials to an unfamiliar skill; otherwise, read-only queries are low-risk.
Review Dimensions
- Purpose & Capability
- okThe name/description (read public profiles, projects, comments, trending, search) align with the endpoints listed in SKILL.md. No unrelated capabilities (cloud access, filesystem access, or extraneous credentials) are requested.
- Instruction Scope
- noteSKILL.md defines only API endpoints under the base URL https://websim.com and directs using GET endpoints for reads and one POST for comments. This stays within the stated purpose. Note: the post_comment endpoint shows an Authorization header template (Bearer {token}), so the skill expects an auth token when creating comments; the skill does not itself declare how that token is supplied (see environment_proportionality). No instructions in the visible content instruct the agent to read arbitrary local files or transmit data to third-party endpoints beyond the declared base_url.
- Install Mechanism
- okThere is no install spec and no code files — this is instruction-only, so nothing is written to disk or installed by the skill.
- Credentials
- noteThe skill declares no required environment variables or primary credential, which is reasonable for read-only public endpoints. However, post_comment requires an Authorization: Bearer {token} header; SKILL.md does not declare a primaryEnv or required env var for that token. This is not necessarily malicious (the token can be provided interactively at runtime), but it's a small inconsistency worth noting: the skill expects an auth token for write operations but doesn't declare how the agent should obtain/store it.
- Persistence & Privilege
- okalways is false and the skill has no install or system persistence. The skill does not request system-wide config changes or access to other skills' credentials.