Back to skill
Skillv0.5.0
ClawScan security
和风天气 · ClawHub's context-aware review of the artifact, metadata, and declared behavior.
Scanner verdict
BenignApr 24, 2026, 10:44 AM
- Verdict
- benign
- Confidence
- high
- Model
- gpt-5-mini
- Summary
- The skill's requirements and runtime instructions align with a QWeather (和风天气) CLI client: it asks for the API/project identifiers, a private key (path) for JWT auth, and service endpoints — all consistent with weather API usage.
- Guidance
- This skill appears to be a straightforward CLI client for QWeather and its requirements are reasonable for that purpose. Before installing or providing credentials: 1) verify the GitHub repository/source code (cargo install --git will compile code from that repo); 2) only provide the QWEATHER_PRIVATE_KEY if you trust the repo and service, and prefer giving the private key as a file with restricted permissions rather than pasting it into open environments; 3) the BASE_URL/GEO_URL env vars let the client talk to custom endpoints — ensure they point to the official QWeather endpoints; 4) if you are unsure, inspect the repository code first or request a packaged release from a trusted source.
Review Dimensions
- Purpose & Capability
- okName/description (weather queries) match the declared env vars and CLI: QWEATHER_KID, QWEATHER_PROJECT_ID, and a PRIVATE_KEY for JWT are plausible for the QWeather API; BASE_URL and GEO_URL let the client target regional/custom endpoints.
- Instruction Scope
- noteSKILL.md only documents installing a CLI (cargo) and using env vars or CLI flags to call QWeather endpoints. It requires reading a private key file (QWEATHER_PRIVATE_KEY points to a .pem path), which implies filesystem access to that key — expected for JWT auth but worth noting as sensitive.
- Install Mechanism
- okNo registry-level install spec is present; SKILL.md recommends 'cargo install' or installing from the GitHub repo. Installing via cargo or from a GitHub repo is standard; it compiles and places a binary on disk (moderate-risk if you don't trust the source).
- Credentials
- okFive environment variables are requested; they directly map to authenticating and contacting the QWeather service. The PRIVATE_KEY is sensitive (a file path to a PEM) and is declared as primaryEnv — this is proportionate but requires care with file permissions and supply method.
- Persistence & Privilege
- okalways is false, the skill is user-invocable, and there is no instruction to modify other skills or system-wide settings. It does not request persistent platform-level privileges.