docs-refresh Security Report — Trusted | ClawSafe

0 /100

docs-refresh

Refresh authoritative docs through a routed progressive-disclosure workflow

A benign documentation-refresh workflow skill that uses bash/git to analyze repository changes and route to appropriate doc-maintenance modes.

Skill Namedocs-refresh

Duration27.4s

Enginepi

✓

Safe to install

No action needed. The skill is safe to use.

Resource	Declared	Inferred	Status	Evidence
Shell	`WRITE`	`WRITE`	✓ Aligned	SKILL.md: 'run the collector' + manual routing fallback mentions 'shell executio…
Filesystem	`READ`	`READ`	✓ Aligned	SKILL.md: reads git status, diffs, untracked files; explicitly says 'Do not stag…
Network	`NONE`	`NONE`	—	No network activity in any script
Environment	`NONE`	`NONE`	—	No environment variable access in scripts
Clipboard	`NONE`	`NONE`	—	No clipboard access
Browser	`NONE`	`NONE`	—	No browser access
Database	`NONE`	`NONE`	—	No database access
Skill Invoke	`NONE`	`NONE`	—	No cross-skill invocation

File Tree

9 files · 30.2 KB · 831 lines

Shell 3f · 645L Markdown 5f · 182L YAML 1f · 4L

├─ ▾ 📁 agents

│ └─ 📋 openai.yaml YAML 4L · 683 B

├─ ▾ 📁 modes

│ ├─ 📝 bootstrap.md Markdown 31L · 1.9 KB

│ ├─ 📝 minimal.md Markdown 26L · 1.5 KB

│ ├─ 📝 repair.md Markdown 22L · 1.1 KB

│ └─ 📝 structured.md Markdown 24L · 1.3 KB

├─ ▾ 📁 scripts

│ ├─ 🔧 collect_changed_context.sh Shell 531L · 15.0 KB

│ ├─ 🔧 test_collect_changed_context_routing.sh Shell 91L · 2.2 KB

│ └─ 🔧 test_skill_fallback_contract.sh Shell 23L · 1004 B

└─ 📝 SKILL.md Markdown 79L · 5.6 KB

✓ Shell execution via bash/git is declared in SKILL.md and is necessary for the core git analysis feature

✓ SKILL.md explicitly prohibits staging or committing ('Do not stage or commit anything')

✓ No credential harvesting, no sensitive path access (~/.ssh, ~/.aws, .env)

✓ No network requests, no external IP connections

✓ No base64/encoded payloads, no eval, no curl|bash patterns

✓ Scripts only perform read-only git operations (status, diff, ls-files)

✓ Test scripts use isolated temp directories with mktemp and trap cleanup

✓ No dependency files (requirements.txt, package.json) that could introduce supply-chain risk

✓ All functionality is self-contained and focused on documentation classification