Skillv0.0.2

ClawScan security

Identitygram Signin · ClawHub's context-aware review of the artifact, metadata, and declared behavior.

BenignFeb 12, 2026, 5:24 AM

Verdict: benign
Confidence: high
Model: gpt-5-mini
Summary: The skill is internally consistent: it only sends provided email/password to IdentityGram's signin endpoint and asks for no extra permissions or installs.
Guidance: This skill will transmit whatever email and password you supply to https://gateway-v2.identitygram.co.uk/auth/signin — that is the intended behaviour for a signin skill. Before installing or invoking it: (1) confirm you trust IdentityGram and that this is the correct endpoint; (2) verify the skill owner if that matters to you (note the ownerId mismatch in _meta.json vs registry metadata); (3) avoid supplying high-value credentials in testing—use a throwaway account first; (4) prefer providing credentials at invocation time rather than storing them in environment variables; and (5) review network logs if you need an audit trail. If you have any doubt about the owner or endpoint, do not install or use the skill.

Purpose & Capability: noteThe skill's name, README, SKILL.md, and SKILL.yaml all describe the same action (POST email/password to https://gateway-v2.identitygram.co.uk/auth/signin). One minor inconsistency: the ownerId in the registry metadata (kn77w3...) differs from the ownerId in _meta.json (kn70j4...), which may indicate a packaging/metadata mismatch but does not change the runtime behaviour.
Instruction Scope: okRuntime instructions only describe making a single HTTPS POST with email/password and returning the JSON response (tokens/user/message). The skill does not ask to read files, other env vars, or send data to any other endpoints.
Install Mechanism: okThis is an instruction-only skill with no install spec and no code files to execute. Nothing is downloaded or written to disk by an installer.
Credentials: okThe skill requests no environment variables or credentials beyond the email and password parameters it expects at invocation. Those parameters are appropriate for a signin operation.
Persistence & Privilege: okThe skill is not always-enabled, does not modify other skills or system configuration, and does not request persistent privileges.