ClawAudit verdict

hook-authoring

nm-abstract-hook-authoring

88
🟢 Trusted
Low risk — reviewed by ClawAudit, behavior matches stated purpose

Accesses agent memory AND writes files

Educational documentation for writing Claude Code hooks; file read/write capabilities are used to create hook configuration files as expected for an authoring guide.

Automated static analysis — not a human review. ClawAudit flags capabilities, not confirmed intent, and can produce false positives. Disagree with this verdict? Use Dispute below.

0
security
70
transparency
90
maintenance

What it does

These are capability combinations: each listed behavior occurs in the skill, but ClawAudit detects co-occurrence — it does not verify that one flows into another. Read the code to confirm a live chain.

Capability combination high

Accesses agent memory AND writes files — may modify agent behavior persistently

LLM01 · LLM06 · ASI01 · ASI06

Capability combination medium

Both reads and writes files — verify scope is limited to intended directories

LLM06 · ASI02

Permission integrity

Performs file operations but does not declare file-accessing binaries

file_read+write

Accesses agent memory/configuration files

agent_memory

Findings (5)

Pattern match critical

Recursive delete from root or home — destructive command

SKILL.md · code · rm -rf /

Pattern match medium

Instructs covert action — may act without user awareness

SKILL.md · prose · downgraded · silently

Pattern match medium

Python aiohttp session — async network access

modules/performance-guidelines.md · code · aiohttp.ClientSession

Pattern match medium

Python os.getenv — reads environment variable

modules/sdk-callbacks.md · code · os.getenv(

Pattern match low

References agent configuration files

modules/hook-types.md · prose · downgraded · CLAUDE.md

Permissions & capabilities

No declared permissions — minimal attack surface.

file_writeagent_memoryfile_read
Check another skill Browse the registry Auditing your own skills or configs? Use the API