Back to skill
Skillv2.0.1
ClawScan security
Sysinfo Fetch · ClawHub's context-aware review of the artifact, metadata, and declared behavior.
Scanner verdict
BenignMay 1, 2026, 7:45 AM
- Verdict
- Benign
- Confidence
- high
- Model
- gpt-5.5
- Summary
- The artifacts show a simple reference skill that prints static documentation and does not request credentials, network access, persistence, or privileged actions.
- Guidance
- This appears safe to install as a static reference lookup. It does not appear to fetch system information despite the name; it only prints general documentation-style text.
Review Dimensions
- Purpose & Capability
- okThe stated purpose is a devtools reference lookup, and the included script implements only reference commands that print static heredoc documentation.
- Instruction Scope
- okThe skill lists user-invoked documentation commands and does not include instructions to override user intent, force tools, or perform autonomous actions.
- Install Mechanism
- okNo install spec, package download, remote installer, or dependency setup is present; the included shell script is fully provided and contains only static output logic.
- Credentials
- okThe artifacts declare no required credentials, environment variables, config paths, binaries, or network use, and the script does not access local files or external services.
- Persistence & Privilege
- okNo persistence, background process, privileged path access, credential handling, or account mutation behavior is evidenced.