Skillv1.0.3

ClawScan security

skill-0327-02222 · ClawHub's context-aware review of the artifact, metadata, and declared behavior.

Scanner verdict

BenignApr 28, 2026, 3:02 AM

Verdict: benign
Confidence: medium
Model: gpt-5-mini
Summary: The skill is internally consistent with its stated purpose (it wraps a local 'summarize' CLI and documents the provider API keys it may use); the main remaining risk is the external Brew package (the binary you must install) which this skill cannot be statically inspected here.
Guidance: This skill appears coherent: it is a thin wrapper around a local 'summarize' CLI and documents the expected provider keys. The main action item before installing: verify the Brew tap and inspect the formula/release (steipete/tap/summarize) or the project's GitHub/release artifacts so you know what binary will be installed. Be aware the CLI will send content to external LLM providers and optional services (Firecrawl, Apify) — avoid submitting highly sensitive data unless you trust those providers and the installed binary. If you cannot inspect the formula, consider running the tool in an isolated environment (container or VM) or using a vetted alternative CLI.

Review Dimensions

Purpose & Capability: okThe name/description match the declared requirements: the skill requires a 'summarize' CLI and offers a Brew install for that CLI. The SKILL.md refers to provider API keys (OpenAI, Anthropic, xAI, Google) and optional services (FIRECRAWL_API_KEY, APIFY_API_TOKEN) that are appropriate for a summarization tool that fetches content and calls LLM providers.
Instruction Scope: okSKILL.md instructions are focused: run the local 'summarize' binary on URLs or files, set provider API keys if needed, and optionally configure ~/.summarize/config.json. It does not instruct the agent to read unrelated system files or exfiltrate credentials. Note: the CLI itself (not included here) will perform network requests to LLM providers and optional services, so runtime network traffic and content transmission are expected.
Install Mechanism: noteInstall is via a Homebrew formula: steipete/tap/summarize. Using a third‑party brew tap is a common delivery for CLI tools but is higher risk than an audited official package—the binary will be downloaded and run locally. The skill package contains no code to inspect, so you must review the brew formula/release or the binary source before trusting it.
Credentials: okThe skill does not require any credentials by default. SKILL.md documents optional provider API keys and service tokens that are directly relevant to its function (calling LLMs, Firecrawl, Apify). There are no unrelated or excessive environment variable demands.
Persistence & Privilege: okThe skill is not forced-always; it is user-invocable and permits normal autonomous invocation (platform default). It does not request persistent system-wide privileges or modification of other skills' configuration.