Skillv1.0.1

ClawScan security

ai-news · ClawHub's context-aware review of the artifact, metadata, and declared behavior.

BenignMar 11, 2026, 4:46 AM

Verdict: benign
Confidence: high
Model: gpt-5-mini
Summary: The skill is internally consistent with a simple news-fetching purpose: it calls a single third‑party API (api.cjiot.cc) to list and show articles and does not request credentials or access unrelated resources.
Guidance: This skill appears to do exactly what it says: fetch news from https://api.cjiot.cc and display summaries/details. Before installing, consider: (1) Network privacy — running the skill issues HTTPS requests to api.cjiot.cc (the provider can log requests, IP addresses, and usage), so don't use it for sensitive contexts if you don't trust that domain. (2) The registry metadata requires both curl and node even though the included scripts are Node-based; you only need Node to run the provided scripts (curl is only shown in examples). (3) The code is small and readable — you can run the Node scripts locally to verify behavior. If you need stronger assurance, ask the publisher for provenance or host-verification (e.g., a known GitHub repo or publisher identity) before enabling in an automated/always-on setting.

Purpose & Capability: noteName/description, SKILL.md, and the two included Node scripts all describe a news-listing and article-detail capability using https calls to api.cjiot.cc. One minor inconsistency: registry metadata lists both curl and node as required binaries (all must exist), but the shipped scripts are Node-based and do not require curl; SKILL.md shows curl examples which explains the presence of curl but requiring both as mandatory is unnecessarily strict.
Instruction Scope: okRuntime instructions and scripts only perform HTTP(S) GET requests to the documented API endpoints, parse JSON, and print results. They do not read local files, environment variables, or other system state, nor do they send data to unexpected external endpoints.
Install Mechanism: okNo install spec; code is instruction-only with two small Node scripts. There are no downloads, archives, or third-party package installs defined by the skill itself.
Credentials: okThe skill declares no required environment variables or credentials, and the code does not attempt to access secrets or other environment variables. The only external access is network calls to api.cjiot.cc, which is appropriate for fetching news.
Persistence & Privilege: okThe skill does not request always:true or other elevated persistence. It is user-invocable and uses normal agent invocation behavior.