Skillv0.1.7

ClawScan security

Reddit Intelligence For Agents · ClawHub's context-aware review of the artifact, metadata, and declared behavior.

Scanner verdict

BenignMar 5, 2026, 2:25 PM

Verdict: Benign
Confidence: medium
Model: gpt-5-mini
Summary: The skill's declared purpose (a Reddit intelligence CLI) matches its requirements (a reddgrow binary and REDDGROW_API_KEY) and its runtime instructions; main risk is the npm install origin and how the CLI stores the API key.
Guidance: This skill appears coherent for its stated purpose, but take these precautions before installing: 1) Inspect the @reddgrow/cli package on npm (check publisher, version, package.json, and any postinstall scripts) and confirm the source (prefer GitHub repo or official site). 2) Prefer supplying the API key via REDDGROW_API_KEY in the environment rather than using 'reddgrow auth login' if you are unsure where the CLI stores credentials; if you must use login, locate and inspect the saved token file and consider using a dedicated service account key with limited scope/credits. 3) Install in a controlled environment (container or VM) if you want to limit risk from npm postinstall scripts. 4) Verify billing/credit implications (commands mention credit costs) and monitor usage. 5) Note the small metadata/version mismatch (0.1.6 vs 0.1.7) and missing homepage in registry metadata — you may want to confirm the canonical homepage/repo before trusting the package.

Review Dimensions

Purpose & Capability: okName/description match what is required: the skill needs a reddgrow CLI and an API key (REDDGROW_API_KEY), which is consistent with a Reddit intelligence tool. Minor metadata quirk: SKILL.md lists version 0.1.6 while registry metadata shows 0.1.7 and registry 'homepage' is missing even though SKILL.md references https://reddgrow.ai — this is a small inconsistency but does not undermine purpose alignment.
Instruction Scope: okSKILL.md explicitly instructs the agent to run reddgrow CLI commands and to provide an API key. It does not ask the agent to read unrelated files, other credentials, or system state. It does instruct using 'reddgrow auth login' which will persist the API key via the CLI (normal for a CLI but worth checking where/how it is stored). No instructions to transmit data to unexpected endpoints are present (api base is reddgrow's API).
Install Mechanism: noteInstall is via npm package @reddgrow/cli which will provide the reddgrow binary — this is expected for a Node-based CLI. Caveats: global npm installs can run arbitrary code (postinstall), there is no checksum/lockfile shown, and the registry metadata lacks a homepage entry (though SKILL.md references https://reddgrow.ai). Recommend verifying the package on the npm registry, inspecting its package.json and any postinstall scripts, and prefer a constrained install environment (or audit the package) before global installation.
Credentials: okThe only required environment variable is REDDGROW_API_KEY (declared as primaryEnv), which is appropriate for an API-backed CLI. SKILL.md also documents optional REDDGROW_API_URL and REDDGROW_MODE — those are reasonable. No unrelated secrets or multiple unrelated credentials are requested.
Persistence & Privilege: noteSkill is not forced-always and is user-invocable; model invocation is allowed (normal). The CLI's 'auth login' will save credentials locally (expected), so verify where the CLI writes credentials (e.g., home directory, system keychain) and whether saved credentials are stored encrypted. The skill does not request to modify other skills or system-wide agent configs.