Skillv1.0.3

ClawScan security

🦆 投研鸭 · 二级市场每日策略简报 · ClawHub's context-aware review of the artifact, metadata, and declared behavior.

BenignApr 8, 2026, 3:07 PM

Verdict: benign
Confidence: high
Model: gpt-5-mini
Summary: The skill's requests, instructions, and network calls align with its stated purpose (fetching market briefings from api.touyanduck.com); it asks for no credentials, installs nothing, and does not access local files or unrelated services.
Guidance: This skill appears internally consistent and limited to fetching market briefings from api.touyanduck.com. Before enabling, consider: (1) the source/homepage is not provided—if provenance matters, ask the publisher for an official homepage or source code; (2) the skill will make outbound HTTPS requests to a custom domain—if you have strict privacy/network policies, run it in an environment where such requests are allowed or monitor them; (3) it requires no credentials, so it cannot access your cloud accounts, but avoid pasting secrets into prompts that might be included in messages the skill processes; (4) if you want to prevent automatic invocation on keyword matches, disable or restrict the skill and call it manually instead.

Purpose & Capability: okName/description (daily market briefing) match the skill's instructions: all runtime actions are HTTP GETs to api.touyanduck.com and its /archive endpoints to retrieve briefings, summaries, and JSON market data. No unrelated credentials, binaries, or config paths are requested.
Instruction Scope: okSKILL.md directs the agent only to curl specific HTTPS endpoints (briefing.md, briefing.json, archive/*) and to extract/format content for the user. It does not instruct reading local files, environment variables, or forwarding data to other external endpoints. The auto-trigger keywords are specific to market queries.
Install Mechanism: okNo install spec or code files are present (instruction-only). Nothing is downloaded or written to disk by the skill itself.
Credentials: okThe skill requires no environment variables, credentials, or config paths. Its network use is limited to a single custom API domain consistent with the stated data source.
Persistence & Privilege: okalways is false; the skill is user-invocable and can be autonomously invoked per platform defaults. It does not request system-wide changes or persistent configuration.