ClawHub
Back to skill
v1.0.0

Expor Native UI

BenignClawScan verdict for this skill. Analyzed May 1, 2026, 5:33 AM.

Analysis

This is an instruction-only Expo/React Native UI guide with no executable skill code; the main things to notice are optional install/package commands and media-permission examples.

GuidanceThis skill appears safe as an instruction-only Expo UI reference. Before installing or following examples, verify any npx/GitHub/package commands you run, and only add camera, microphone, media-library, storage, or file-saving permissions when your app actually needs them.

Findings (2)

Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.

Abnormal behavior control

Checks for instructions or behavior that redirect the agent, misuse tools, execute unexpected code, cascade across systems, exploit user trust, or continue outside the intended task.

Agentic Supply Chain Vulnerabilities
SeverityLowConfidenceHighStatusNote
README.md
npx add https://github.com/wpank/ai/tree/main/skills/frontend/expo-native-ui

The README offers a user-run npx/GitHub install path rather than a pinned release; this is disclosed and optional, but users should verify the source before running it.

User impactIf followed, this setup command may download and run package-manager code and retrieve content from a remote repository path.
RecommendationPrefer the official ClawHub install path when possible, or verify the repository and pin a trusted version or commit before running npx/GitHub install commands.
Permission boundary

Checks whether tool use, credentials, dependencies, identity, account access, or inter-agent boundaries are broader than the stated purpose.

Identity and Privilege Abuse
SeverityLowConfidenceHighStatusNote
references/media.md
- Eagerly request camera permission
- Lazily request media library permission
...
const status = await AudioModule.requestRecordingPermissionsAsync();

The media examples demonstrate requesting camera, media library, and microphone permissions in generated apps; this is purpose-aligned for media features but affects device privacy permissions.

User impactApps generated from these examples could prompt end users for access to the camera, microphone, or media library.
RecommendationOnly include these permission requests for user-requested media features, explain why access is needed, and gate sensitive permissions behind clear user actions where practical.