Back to skill
Skillv1.1.0
ClawScan security
Feelslikeclaude · ClawHub's context-aware review of the artifact, metadata, and declared behavior.
Scanner verdict
BenignApr 7, 2026, 4:04 PM
- Verdict
- Benign
- Confidence
- medium
- Model
- gpt-5-mini
- Summary
- An instruction-only, local style overlay that is internally consistent with its stated goal of changing agent tone and proactivity; it requests no credentials or installs—however, its action-first guidance can cause unexpected side effects if the host agent has powerful connectors enabled.
- Guidance
- This skill is a local behavior overlay and does not request credentials or install anything, so it's coherent with its description. Before enabling it broadly, check how your OpenClaw runtime handles actions: because the skill encourages doing the next step automatically, make sure connectors that can perform network, billing, or destructive operations require explicit confirmation. Consider testing in a low-risk environment, enable logs or an approval step for external actions, and keep the skill disabled for runs that must be strictly read-only or audit-only.
Review Dimensions
- Purpose & Capability
- okName/description match the requested artifacts: the skill is an instruction-only behavior overlay and asks for no binaries, env vars, or installs. Nothing requested is out of proportion with a UI/behavior style overlay.
- Instruction Scope
- noteSKILL.md stays within a behavioral/style scope and explicitly forbids network activity and identity/config rewrites. However, it tells the agent to 'start the real work' and to execute step 1 when clear—this encourages autonomous, action-first behavior. If the runtime agent has side-effecting connectors or permissions, that guidance could cause the agent to perform network or destructive actions unless other runtime safeguards are enforced.
- Install Mechanism
- okNo install spec and no code files. Lowest-risk distribution method: nothing is downloaded or written to disk by the skill itself.
- Credentials
- okNo environment variables, credentials, or config paths are requested. The skill does not require access to secrets or external services.
- Persistence & Privilege
- okalways:false and no special privileges requested. The skill does not attempt to persist configuration or modify other skills; autonomous invocation is the platform default and not changed here.