Back to skill
Skillv1.1.0
ClawScan security
Code Research Crafter · ClawHub's context-aware review of the artifact, metadata, and declared behavior.
Scanner verdict
BenignApr 21, 2026, 11:51 AM
- Verdict
- benign
- Confidence
- high
- Model
- gpt-5-mini
- Summary
- The skill's requirements and runtime instructions are consistent with its stated purpose of analyzing codebases and producing/publishing RFCs: it only needs git/gh and reads repo files and web resources, and it does not request unrelated credentials or perform hidden installs.
- Guidance
- This skill is coherent with its stated purpose, but be aware: it will read local repository files and may ask you to authenticate the gh CLI to create files/issues/PRs on GitHub. Only run it on repositories you own or have permission to modify. If you plan to use it with private repos, check which GitHub token/account you authenticate with (gh auth status) and avoid granting more privileges than necessary; revoke or rotate tokens if you later stop trusting the skill. Review any proposed changes before you allow the skill to push or create pull requests.
Review Dimensions
- Purpose & Capability
- okName/description (deep code research + GitHub RFC publication) match the declared requirements: git and gh are reasonable dependencies for analyzing repos and publishing RFCs. No unrelated env vars, binaries, or config paths are requested.
- Instruction Scope
- noteSKILL.md explicitly instructs the agent to read local repo files (README, docs, source files), run glob/grep searches, query GitHub via gh and fetch web papers (WebSearch/WebFetch). These actions are coherent with the purpose but mean the agent will access local code and remote web content; user should expect repository reads/edits and potential publication steps (creating files/issues/PRs) when authorized.
- Install Mechanism
- okInstruction-only skill with no install spec and no archive downloads; low risk. It relies on existing system tools (git, gh) rather than pulling arbitrary code.
- Credentials
- okNo environment variables or secrets are declared or required by the skill. It may prompt the user to authenticate the gh CLI for publishing, which is proportionate and expected for GitHub operations.
- Persistence & Privilege
- okalways is false and the skill is user-invocable with normal autonomous invocation allowed. It does not request permanent system presence or modify other skills' configurations.