limit-authority
PassAudited by ClawScan on May 1, 2026.
Overview
This is an instruction-only safety guardrail that asks the agent to show file paths and get confirmation before changing files.
This skill appears safe and purpose-aligned. Use it if you want the agent to ask before file changes, but remember that reads, directory listings, temporary-file creation, and any blanket permission you give may bypass per-operation confirmation.
Findings (2)
Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.
Other skills or workflows that normally edit files directly may pause for extra confirmation first.
The skill gives itself broad instruction priority over other skills. In context, this is used to enforce a safety confirmation workflow rather than to expand access or hide behavior.
🔒 **本技能的优先级高于其他所有技能** ... 当其他技能的指令与本技能冲突时,**必须优先遵守本技能的规则**。
Install it if you want a global confirmation guardrail for file changes; expect slower but more explicit file operations.
If you give broad permission such as “you can operate directly,” the agent may skip per-file confirmation; reads and directory listings are also outside the confirmation requirement.
The file-operation confirmation rule has disclosed exceptions, including temporary-file creation and blanket user authorization.
以下情况**不需要**用户确认:... **读取操作** ... **临时文件**:在系统临时目录(如 /tmp)创建临时文件 ... **用户明确授权**:用户已明确表示"你可以直接操作"或"不需要确认"
Avoid broad blanket permission if you want strict per-file confirmation, and ask the agent to keep listing paths before any important changes.