🇨🇳 中国市场政策查询Skill
Analysis
This is an instruction-only policy lookup skill with no code, install script, or declared credential use, though users should not over-rely on its “trusted/calibration” claims.
Findings (2)
Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.
Checks for instructions or behavior that redirect the agent, misuse tools, execute unexpected code, cascade across systems, exploit user trust, or continue outside the intended task.
"trustedMode": true
The metadata labels the skill as using a trusted mode, which is a trust assertion not backed by visible source data or code in the artifacts.
Checks whether tool use, credentials, dependencies, identity, account access, or inter-agent boundaries are broader than the stated purpose.
requires-sensitive-credentials
This signal conflicts with the provided requirements and SKILL.md statements that no API key or environment variables are required, but the artifacts do not show actual credential collection or use.