Skillv1.0.52

ClawScan security

Ai Cost Optimizer · ClawHub's context-aware review of the artifact, metadata, and declared behavior.

Scanner verdict

BenignMar 16, 2026, 3:49 AM

Verdict: Benign
Confidence: high
Model: gpt-5-mini
Summary: The skill is internally consistent with its stated purpose (AI cost optimization): it is instruction-only, asks no unrelated credentials, and its runtime steps match the described functionality.
Guidance: This skill appears to do what it says — give cost comparisons and suggest model/config changes — and it does not ask for any credentials. Before using: (1) verify the pricing numbers against official provider docs (they can change); (2) be careful with any BYOK instructions — never paste API keys into untrusted UIs or third-party services; prefer storing keys in your agent's secure vault if available; (3) when following OpenClaw configuration steps, review what files will be changed and back them up; (4) note the package metadata/version mismatch and that the skill's source/homepage is not provided — treat the author as unknown and test with non-sensitive example data first.

Review Dimensions

Purpose & Capability: okName and description (AI cost optimization) align with the SKILL.md: it lists model prices, asks for budget and task type, recommends models, computes savings, and provides configuration guidance. There are no unrelated required binaries, env vars, or config paths. Minor metadata mismatch: skill.json version (1.0.0) differs from registry version (1.0.52) — likely a packaging oversight, not a security contradiction.
Instruction Scope: noteSKILL.md instructions stay on-topic (ask user budget, recommend models, compute savings, produce OpenClaw configuration steps). It mentions OpenClaw configuration and 'BYOK (bring your own API Key)', which implies the user may be guided to modify agent config or provide API keys — the instructions do not themselves request or transmit keys, nor do they specify reading system files. Recommend caution when following config/BYOK steps (avoid pasting keys into untrusted interfaces).
Install Mechanism: okInstruction-only skill with no install spec, no downloads, and no code files — lowest-risk install surface. Nothing is written to disk by the skill itself.
Credentials: okThe skill requests no environment variables, no credentials, and no config paths. All data it needs (budget, task type, current cost) is gathered interactively from the user per the instructions.
Persistence & Privilege: okalways is false and model invocation is normal. The skill does not request permanent presence, nor does it instruct altering other skills' configs. Its guidance may tell users how to change their OpenClaw config, but it does not itself claim to modify agent settings.