Back to skill
Skillv1.0.0
ClawScan security
Browser Config · ClawHub's context-aware review of the artifact, metadata, and declared behavior.
Scanner verdict
BenignMar 10, 2026, 4:56 PM
- Verdict
- benign
- Confidence
- high
- Model
- gpt-5-mini
- Summary
- The skill's requests and instructions match its stated purpose (configuring OpenClaw-CN browser modes); it is an instruction-only utility that edits local OpenClaw config and runs the openclaw-cn CLI.
- Guidance
- This skill appears coherent with its purpose, but take simple precautions before using it: (1) confirm the openclaw-cn binary you have is from a trusted source; (2) back up C:\Users\Administrator\.openclaw\openclaw.json before editing; (3) be aware the instructions require restarting the OpenClaw gateway and write access to that user profile (you may need administrative rights); (4) if using chrome mode, only install/use a trusted OpenClaw Browser Relay extension; (5) avoid running provided commands as an elevated user unless necessary — test changes in a safe environment first.
Review Dimensions
- Purpose & Capability
- okName/description describe configuring OpenClaw-CN browser modes and the skill only requires the openclaw-cn binary and edits OpenClaw config files — these requirements are appropriate and expected for this purpose.
- Instruction Scope
- noteSKILL.md directs the user/agent to edit C:\Users\Administrator\.openclaw\openclaw.json, restart the OpenClaw gateway, and run openclaw-cn browser commands. This is within scope for a browser-config skill but requires write access to the user's OpenClaw config and ability to restart the gateway; no unrelated files, credentials, or external endpoints are referenced.
- Install Mechanism
- okNo install spec or downloaded code is included; the skill is instruction-only and relies on the existing openclaw-cn binary, which is low-risk from an install perspective.
- Credentials
- okThe skill requests no environment variables or external credentials. It references local OpenClaw config paths (in the Administrator user's home), which is expected for configuring the product and proportional to its function.
- Persistence & Privilege
- okSkill is not marked always:true and is user-invocable; it does not request persistent elevated privileges or attempt to modify other skills or global agent settings. Autonomous invocation is permitted by platform default but not otherwise unusual here.