Back to skill
Skillv0.1.0
ClawScan security
Typescript Pro · ClawHub's context-aware review of the artifact, metadata, and declared behavior.
Scanner verdict
BenignMay 1, 2026, 4:55 AM
- Verdict
- Benign
- Confidence
- high
- Model
- gpt-5.5
- Summary
- This is an instruction-only TypeScript guidance skill with no evidence of hidden execution, credential use, persistence, or data exfiltration.
- Guidance
- This skill appears safe to install as a TypeScript coding assistant. As with any implementation guidance skill, review generated code and tsconfig changes before applying them to a project.
Review Dimensions
- Purpose & Capability
- okThe stated purpose is advanced TypeScript development, and the provided SKILL.md and reference files consistently contain TypeScript patterns, compiler configuration examples, type guards, utility types, and API typing guidance.
- Instruction Scope
- okInstructions are scoped to producing code and configuration guidance for TypeScript projects; they do not direct the agent to override user intent, conceal actions, or treat untrusted content as authoritative.
- Install Mechanism
- okThere is no install spec, no package installation, and no code files; the skill is documentation/instruction only.
- Credentials
- okThe metadata declares no required binaries, environment variables, credentials, or config paths, which is proportionate for a TypeScript advisory skill.
- Persistence & Privilege
- okArtifacts show no persistence mechanism, background process, privilege escalation, credential handling, or long-running autonomous behavior.