Ai Intelligent Asset Lifecycle
PassAudited by ClawScan on May 1, 2026.
Overview
The provided skill artifacts do not show malicious behavior, but the README asks users to manually clone and run external code that is not included in the reviewed package.
This skill appears to be mostly a description or README rather than a working reviewed implementation. If you only install the provided skill, there is no evidenced sensitive behavior. If you choose to follow the README installation commands, review the external GitHub repository and Python dependencies first.
Findings (1)
Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.
If you follow the setup instructions, you would be trusting and running code that was not included in this reviewed skill package.
The skill package itself contains no code files, but the documentation tells users how to fetch dependencies and run an external Python application, creating a provenance gap if users follow the manual setup.
git clone https://github.com/openclaw-skills/ai-intelligent-asset-lifecycle cd ai-intelligent-asset-lifecycle pip install -r requirements.txt python app.py
Before running the documented setup commands, verify the GitHub repository, inspect the code and requirements, and prefer pinned dependencies or an official reviewed release.