Back to skill
Skillv1.0.0
ClawScan security
easy-code-review · ClawHub's context-aware review of the artifact, metadata, and declared behavior.
Scanner verdict
BenignMar 11, 2026, 9:09 AM
- Verdict
- benign
- Confidence
- high
- Model
- gpt-5-mini
- Summary
- The skill's code, instructions, and requested permissions are coherent with a code-review assistant and do not request unrelated credentials or network installs.
- Guidance
- This skill appears to do what it says: analyze git diffs and produce review reports. Before installing: (1) review the included scripts (scripts/analyze_changes.py) yourself to confirm behavior; (2) be aware that granting file.read and git.read gives the skill access to your repository files — avoid running it against repos with secrets unless you trust the environment; (3) if you don't want automatic runs, avoid adding the suggested pre-commit hook or CI integration, or limit those integrations to non-sensitive branches; (4) run the analyzer locally first (python scripts/analyze_changes.py) to see sample outputs; (5) if you are in a shared/CI environment with injected secrets, ensure the skill's outputs/reports won't expose them. Overall the package is coherent and proportionate to its stated purpose.
Review Dimensions
- Purpose & Capability
- okName/description match the behavior: SKILL.md and analyze_changes.py focus on parsing git diffs, classifying file types, and producing review reports. Declared permissions (file.read, file.write, git.read) and the optional Python helper script are appropriate for a code-review skill.
- Instruction Scope
- okRuntime instructions explicitly describe using git diff/git show and analyzing provided diffs or staged changes. The skill does not instruct reading unrelated system paths or environment variables; it only references project files and git state. The SKILL.md includes examples (pre-commit hook, CI) that would invoke the skill automatically if the user installs those integrations, but those are user-provided integration steps, not hidden behavior.
- Install Mechanism
- okThere is no install spec (instruction-only skill) and the included Python script is local. No external downloads, URL shorteners, or extraction steps are present. README/CI examples mention installing OpenClaw (curl) but that is an example for the environment, not a skill-provided installer.
- Credentials
- okThe skill requests no environment variables or external credentials. The only runtime requirements are access to the repository (git) and file read/write, which are proportional to reviewing code. The script uses subprocess to run git commands — expected for its purpose.
- Persistence & Privilege
- notealways:false and no self-modifying behavior are present. However, documentation includes pre-commit hook and CI examples that, if installed by the user, will cause the skill to run automatically in those contexts; consider that enabling such integrations increases its runtime frequency and access to repo contents.