Back to skill
Skillv1.0.0
ClawScan security
matrixbnuhs · ClawHub's context-aware review of the artifact, metadata, and declared behavior.
Scanner verdict
BenignApr 11, 2026, 7:42 AM
- Verdict
- Benign
- Confidence
- medium
- Model
- gpt-5-mini
- Summary
- The skill is an instruction-only README for a React/TypeScript education collaboration app and its runtime instructions are consistent with that purpose, but it directs the agent to fetch and run code from an external GitHub repo (not packaged with the skill), so exercise normal caution.
- Guidance
- This skill is essentially a README telling you how to clone and run an external GitHub project. That is coherent with its description, but cloning and running external code can execute arbitrary code on your machine or environment. Before running the commands: (1) inspect the GitHub repo and specific commit/tag you will clone (prefer a pinned commit or release), (2) review package.json and Dockerfile for unexpected postinstall scripts or network calls, (3) avoid installing global CLIs unless necessary—use containers or ephemeral sandboxes instead, (4) run npm install and builds inside a container or VM, (5) verify licensing and project origin. If you want higher assurance, request that the skill bundle include the code (or a signed release URL and checksum) so the skill's contents can be statically reviewed.
Review Dimensions
- Purpose & Capability
- okName/description describe a React+TypeScript knowledge collaboration system and the SKILL.md contains repository layout, dev commands, APIs, and deployment steps that match that purpose. Nothing requested (envs, binaries, config paths) is incongruent with the stated goal.
- Instruction Scope
- noteInstructions tell the agent to git clone https://github.com/wanyview1/Matrix-BNUHS.git, run npm install, npm run dev/build, optionally install Vercel CLI globally, and provide Dockerfile guidance — all appropriate for a project README but they cause the agent/operator to fetch and run external code not included in the skill.
- Install Mechanism
- okThere is no install spec and no code files in the skill bundle (instruction-only). This minimizes disk-level installs by the skill itself, but the runtime instructions rely on cloning an external GitHub repo and running npm/docker commands, which means external code will be executed if followed.
- Credentials
- okThe skill declares no required environment variables, credentials, or config paths. The instructions do not request secrets or unrelated credentials — proportional to a frontend/project README.
- Persistence & Privilege
- okalways is false and the skill does not request persistent system-wide privileges. It does suggest global installation of the Vercel CLI (optional), which modifies the environment if performed by the operator.