Skillv0.1.0

ClawScan security

reflow-profile-compliance-toolkit · ClawHub's context-aware review of the artifact, metadata, and declared behavior.

BenignApr 5, 2026, 4:34 AM

Verdict: benign
Confidence: high
Model: gpt-5-mini
Summary: The skill's requests and instructions are internally consistent with a reflow-profile compliance toolkit: it is instruction-only, asks for no credentials or installs, and describes deterministic computations that match its stated purpose.
Guidance: This is an instruction-only toolkit that appears coherent and low-risk, but it requires the agent to read your handbook (PDF) and thermocouple/MES data files to work correctly. Before installing or invoking it: (1) ensure the agent is only given access to the specific handbook and trace files you intend it to use (limit file scope); (2) verify handbook version/authority and units (°C vs °F, seconds vs ms) to avoid misinterpretation; (3) validate the implementation on known test runs to confirm rounding/edge-case handling (NaN, zero/negative dt, identical timestamps); (4) confirm outputs will not be automatically transmitted outside your environment; and (5) if you need auditability, request the agent to produce intermediate reports (extracted constraints, selected segments) so you can review how handbook rules were applied.

Purpose & Capability: okName/description (reflow profile computations and handbook extraction) match the SKILL.md content. No unrelated binaries, env vars, or installs are requested.
Instruction Scope: noteSKILL.md tells the agent to extract numeric limits from a handbook (handbook.pdf) and to compute metrics from thermocouple/MES data. This is consistent with the purpose, but it implicitly requires the agent to read user-provided files (handbook, thermocouple traces, MES exports). The instructions do not direct sending data to external endpoints. Confirm where the handbook and trace files will come from and limit access to only the needed files.
Install Mechanism: okInstruction-only skill with no install spec or code files; nothing is written to disk or downloaded by the skill itself.
Credentials: okNo environment variables, credentials, or config paths are requested — proportional and minimal for the stated task.
Persistence & Privilege: okalways:false and default invocation settings; the skill does not request persistent/system-wide presence or to modify other skills.