Skillv1.1.1

ClawScan security

Huo15 Openclaw Explore Mode · ClawHub's context-aware review of the artifact, metadata, and declared behavior.

Scanner verdict

BenignApr 24, 2026, 4:16 AM

Verdict: benign
Confidence: high
Model: gpt-5-mini
Summary: This is an instruction-only, read‑only ‘explore mode’ for investigating codebases; its requirements and behavior are coherent aside from a small note about using git without declaring git as a required binary.
Guidance: This skill is an instruction-only read-only explorer for codebases and appears coherent and low-risk. Before installing, confirm you are comfortable with the agent having read access to the repository you analyze (it will inspect files, tests, and git history and may report file paths and line numbers). If you do not want git operations performed, ensure the agent environment lacks git or instruct the agent not to run git commands. No credentials are requested by the skill, but as with any codebase analysis, avoid running it on repositories containing secrets you don't want summarized or exposed.

Review Dimensions

Purpose & Capability: okThe name/description (deep, read-only exploration of codebases) matches the instructions: directory scanning, reading README/configs/tests, tracing call chains, and producing a structured report. Minor mismatch: the SKILL.md explicitly says to consult git log, which implies needing git, but the skill declares no required binaries.
Instruction Scope: okInstructions stay within the stated purpose: they direct the agent to read files, examine git history, and produce a report. They explicitly require only read actions ('只读不改'). There are no steps that request unrelated secrets, system configuration changes, or external data exfiltration. Note: producing file paths and line numbers is expected but will disclose any sensitive contents present in the repository.
Install Mechanism: okNo install spec and no code files — lowest-risk model. The skill is instruction-only and will not write files or install binaries itself.
Credentials: okThe skill declares no environment variables, no credentials, and no config paths. This is proportional to its purpose. The only potential runtime requirement is read access to the workspace and availability of git if the agent follows the '查看 git log' step.
Persistence & Privilege: okalways is false and the skill does not request elevated or persistent privileges. It does not modify other skills or system settings. Note that autonomous invocation is allowed by default (platform default) — combine with your usual governance if you restrict autonomous skills.