Skillv0.1.0

ClawScan security

C盘清理员 · ClawHub's context-aware review of the artifact, metadata, and declared behavior.

Scanner verdict

BenignApr 22, 2026, 3:57 AM

Verdict: benign
Confidence: high
Model: gpt-5-mini
Summary: Skill's stated purpose (safe, whitelist-based C: cleanup) matches its instructions and requirements; no unrelated credentials, installs, or hidden endpoints are requested — but verify the actual cleanup script before running.
Guidance: This skill is coherent and narrowly scoped, but before running any deletion: 1) Note the package does not include the referenced PowerShell script file — obtain the script from a trusted source or inspect its contents first. 2) Always run in DryRun mode first and review the per-directory prompts and the generated log. 3) Backup important data (Downloads, Desktop, documents) before any real deletion. 4) Do not run with elevated/administrator privileges unless you audited the exact script — elevated rights increase potential harm if the script is different than described. 5) If you expect the agent to run autonomously, ensure you understand its prompt/confirmation behavior so deletions occur only after your explicit consent.

Review Dimensions

Purpose & Capability: okName/description (C: safe cleanup) align with the instructions: white-list directories, explain each item, ask for per-directory confirmation, only delete contents and produce a Markdown log. The SKILL.md only references Windows system paths and per-directory actions that are directly relevant.
Instruction Scope: noteThe instructions are tightly scoped with explicit 'must not' rules (no full-disk scan, no registry edits, per-directory confirmation, DryRun mode). One inconsistency: the skill repeatedly references a PowerShell script (script/c-drive-safe-cleanup.ps1) and gives concrete run commands, but the provided file manifest and archive do not include that script. That means the skill as-distributed is instruction-only; users/agents would need to obtain or write the script separately. Confirming the real script content is important before executing deletions.
Install Mechanism: okNo install spec, no downloads, and no additional binaries or packages required. Lowest-risk delivery model (instruction-only).
Credentials: okNo environment variables, credentials, or config paths are requested. The only resources referenced are local Windows paths (whitelisted directories) which are appropriate for the stated purpose.
Persistence & Privilege: okalways:false and user-invocable:true. The skill does not request permanent presence or modify other skills. Autonomous invocation is allowed (platform default) but not excessive here given the skill's interactive, confirmation-driven design.