Skillv1.0.5

ClawScan security

Trash Cli · ClawHub's context-aware review of the artifact, metadata, and declared behavior.

BenignFeb 28, 2026, 12:51 AM

Verdict: benign
Confidence: high
Model: gpt-5-mini
Summary: This skill is internally consistent with its stated purpose (a thin wrapper/instructions for the existing trash-cli tool); it asks for no secrets and only recommends installing standard packages, though some runtime instructions (sudo to create /.Trash, listing all users' trash, and recommending shell aliases) are actions you should review before executing.
Guidance: This skill is a documentation/integration wrapper for the existing trash-cli tool and appears coherent. Before installing or following its commands: 1) prefer installing from your distro's package manager or the official GitHub release; 2) review any sudo commands (creating /.Trash and changing its permissions) because they modify root-owned paths and can affect system security; 3) be cautious about following instructions that list other users' trash (--all-users) if you care about privacy; 4) think twice before aliasing rm to anything — it can change your workflow and break scripts; and 5) if you allow the agent to run commands autonomously, restrict or require confirmation for any commands that alter filesystem permissions or run with sudo.

Purpose & Capability: okName, description, required binaries, and install methods (brew/pip/apt/pacman/dnf) match the documented trash-cli tool. The skill does not request unrelated credentials or unusual binaries.
Instruction Scope: noteSKILL.md stays on-topic (how to use trash-put, trash-list, trash-restore, trash-empty, trash-rm). It does include instructions that modify system state: creating a top-level /.Trash with sudo and broad permissions, using trash-list --all-users (which surfaces other users' trash), and recommending shell rc edits/aliases. These are expected for a trash utility but are actions with real side effects that deserve user review.
Install Mechanism: okInstall options are standard package managers (brew, pip, apt, pacman, dnf). The registry metadata also lists a brew formula; these are proportionate to installing trash-cli.
Credentials: okNo environment variables, credentials, or config paths are requested. The skill does not attempt to access unrelated secrets or system configuration.
Persistence & Privilege: noteThe skill is not always-enabled and requests no special platform privileges. However, its instructions explicitly advise editing shell rc files (aliases) and running sudo commands; installing or following those instructions will change user/system state. If you allow autonomous agent actions, those steps could be executed — consider limiting automation or requiring explicit confirmation.