Back to skill
Skillv1.0.5
ClawScan security
Xiaohongshu Hotspot Writer1 · ClawHub's context-aware review of the artifact, metadata, and declared behavior.
Scanner verdict
BenignMar 15, 2026, 6:47 AM
- Verdict
- Benign
- Confidence
- high
- Model
- gpt-5-mini
- Summary
- The skill's declared purpose (generating short Xiaohongshu AI/tech hotspot copy) matches its instructions and requirements; it only asks to fetch a single public page and produce text output in the conversation.
- Guidance
- This skill looks coherent: it only asks the agent to fetch one public page and produce text in the chat. Before installing, consider that (1) it depends on the platform's web_fetch tool — ensure web_fetch is trustworthy in your environment, (2) the skill's instruction to 'only use web_fetch and never write files' is a guideline inside the document and not an enforced sandbox; confirm your agent runtime enforces tool usage restrictions if that matters to you, and (3) the skill will fetch third‑party web content (tophub.today) — verify you are comfortable with content from that source. Otherwise the skill's requested access is minimal.
Review Dimensions
- Purpose & Capability
- okName and description describe a daily hotspot copywriter for Xiaohongshu (AI/tech). The SKILL.md only requires using the web_fetch tool to scrape a public aggregator page and produce in-chat copy, which is coherent and proportionate to the stated purpose.
- Instruction Scope
- okRuntime instructions are narrowly scoped: fetch a single URL, extract titles, filter by explicit keywords, generate short posts, and output a dated report in-chat. The SKILL.md explicitly forbids file writes or command execution. It does not request reading unrelated files, environment variables, or posting to external endpoints beyond the single fetch.
- Install Mechanism
- okThere is no install specification and no code files — instruction-only skills have the lowest install risk. The skill relies on the platform-provided web_fetch tool; nothing is downloaded or written to disk.
- Credentials
- okThe skill declares no required environment variables, credentials, or config paths. Its needs (a single web fetch) are minimal and proportionate to the described functionality.
- Persistence & Privilege
- okalways is false and the skill is user-invocable. It does not request persistent system privileges or modify other skills. Autonomous invocation is allowed by default but is not combined with broad privileges here.