Back to plugin
Pluginvv0.1.2
ClawScan security
page.json · ClawHub's context-aware review of the artifact, metadata, and declared behavior.
Scanner verdict
SuspiciousApr 22, 2026, 9:17 PM
- Verdict
- suspicious
- Confidence
- medium
- Model
- gpt-5-mini
- Summary
- The skill provides no meaningful instructions or purpose but includes detailed CSVs with large financial/crypto holdings; the bundle is internally inconsistent and warrants caution.
- Guidance
- This package is ambiguous: it contains sizable crypto transaction and portfolio CSVs but provides no instructions or purpose. Before installing or enabling it, ask the publisher to explain the intent and runtime behavior (why these files, how they are used). If you don't trust the source, do not enable autonomous invocation; instead download and inspect the CSVs offline (scan for PII, verify numbers, check provenance and commit history). Because SKILL.md is empty, treat this as unvetted data rather than a well-scoped integration.
Review Dimensions
- Purpose & Capability
- concernName and description are just 'page.json' with no explanation. The package contains two CSV files with detailed transaction and portfolio data but nothing in the metadata or SKILL.md explains why these files are included or how they should be used. That mismatch (data-heavy payload with no stated purpose) is unexpected.
- Instruction Scope
- concernSKILL.md is effectively empty (just 'page.json'). There are no runtime instructions restricting or explaining file access, leaving the agent (or a reviewer) to guess how to treat the included CSVs. The lack of scope is a risk because the skill could expose or be used to process sensitive financial data without clear justification.
- Install Mechanism
- okNo install spec and no code files — this is instruction-only with two data files. That minimizes supply-chain risk (nothing is downloaded or executed).
- Credentials
- okThe skill requests no environment variables, credentials, or config paths. However, it does include CSVs containing potentially sensitive financial information; absence of credential requests reduces immediate exfiltration risk but does not explain why these data are bundled.
- Persistence & Privilege
- okalways:false and default invocation settings — the skill will not be force-included globally. It does not request elevated persistence or modify other skills.