feat: add canonical ClawScan verdict fields

Author: Patrick-Erichsen

convex/_generated/api.d.ts

@@ -49,6 +49,7 @@ import type * as lib_badges from "../lib/badges.js";
 import type * as lib_batching from "../lib/batching.js";
 import type * as lib_changelog from "../lib/changelog.js";
 import type * as lib_clawScanNote from "../lib/clawScanNote.js";
+import type * as lib_clawScanVerdict from "../lib/clawScanVerdict.js";
 import type * as lib_clawpack from "../lib/clawpack.js";
 import type * as lib_commentScamPrompt from "../lib/commentScamPrompt.js";
 import type * as lib_contentTypes from "../lib/contentTypes.js";
@@ -182,6 +183,7 @@ declare const fullApi: ApiFromModules<{
   "lib/batching": typeof lib_batching;
   "lib/changelog": typeof lib_changelog;
   "lib/clawScanNote": typeof lib_clawScanNote;
+  "lib/clawScanVerdict": typeof lib_clawScanVerdict;
   "lib/clawpack": typeof lib_clawpack;
   "lib/commentScamPrompt": typeof lib_commentScamPrompt;
   "lib/contentTypes": typeof lib_contentTypes;

convex/autobanRemediation.test.ts

@@ -969,6 +969,7 @@ describe("autoban remediation package restore", () => {
                     verification: {},
                     softDeletedAt: bannedAt,
                     staticScan: { status: "malicious" },
+                    clawScanVerdict: "malicious",
                     distTags: ["latest"],
                     createdAt: 2,
                   },
@@ -1099,6 +1100,7 @@ describe("autoban remediation package restore", () => {
                   version: "1.0.0",
                   softDeletedAt: bannedAt,
                   staticScan: { status: "malicious" },
+                  clawScanVerdict: "malicious",
                   distTags: ["latest"],
                 },
               ]),

convex/httpApiV1.handlers.test.ts

@@ -1828,7 +1828,7 @@ describe("httpApiV1 handlers", () => {
     expect(response.status).toBe(200);
     const json = await response.json();
     expect(json.version.security.status).toBe("pending");
-    expect(json.version.security.scanners.vt.normalizedStatus).toBe("suspicious");
+    expect(json.version.security.scanners.vt.normalizedStatus).toBe("review");
     expect(json.version.security.virustotalUrl).toContain("virustotal.com/gui/file/");
   });
 
@@ -1880,12 +1880,12 @@ describe("httpApiV1 handlers", () => {
     expect(json.version.security.status).toBe("clean");
     expect(json.version.security.hasWarnings).toBe(false);
     expect(json.version.security.hasScanResult).toBe(true);
-    expect(json.version.security.scanners.static.normalizedStatus).toBe("pending");
+    expect(json.version.security.scanners.static.normalizedStatus).toBe("review");
     expect(json.version.security.scanners.vt.normalizedStatus).toBe("clean");
     expect(json.version.security.scanners.llm.normalizedStatus).toBe("clean");
   });
 
-  it("lets static-scan malicious status dominate benign vt and llm results", async () => {
+  it("keeps static-scan malicious status advisory when ClawScan is clean", async () => {
     const runQuery = vi.fn(async (_query: unknown, args: Record<string, unknown>) => {
       if ("slug" in args) {
         return {
@@ -1918,6 +1918,8 @@ describe("httpApiV1 handlers", () => {
             verdict: "benign",
             checkedAt: 222,
           },
+          clawScanVerdict: "clean",
+          clawScanState: "complete",
           files: [],
         };
       }
@@ -1930,13 +1932,93 @@ describe("httpApiV1 handlers", () => {
     );
     expect(response.status).toBe(200);
     const json = await response.json();
-    expect(json.version.security.status).toBe("malicious");
-    expect(json.version.security.hasWarnings).toBe(true);
+    expect(json.version.security.status).toBe("clean");
+    expect(json.version.security.hasWarnings).toBe(false);
     expect(json.version.security.hasScanResult).toBe(true);
     expect(json.version.security.checkedAt).toBe(555);
     expect(json.version.security.scanners.static.normalizedStatus).toBe("malicious");
   });
 
+  it("reports pending ClawScan state over stale completed scanner details", async () => {
+    const runQuery = vi.fn(async (_query: unknown, args: Record<string, unknown>) => {
+      if ("slug" in args) {
+        return {
+          skill: { _id: "skills:1", slug: "demo", displayName: "Demo" },
+          latestVersion: null,
+          owner: { handle: "owner", displayName: "Owner", image: null },
+        };
+      }
+      if ("skillId" in args && "version" in args) {
+        return {
+          version: "1.0.0",
+          createdAt: 1,
+          changelog: "c",
+          changelogSource: "auto",
+          sha256hash: "a".repeat(64),
+          clawScanVerdict: "clean",
+          clawScanState: "running",
+          llmAnalysis: {
+            status: "completed",
+            verdict: "benign",
+            checkedAt: 222,
+          },
+          files: [],
+        };
+      }
+      return null;
+    });
+    const runMutation = vi.fn().mockResolvedValue(okRate());
+    const response = await __handlers.skillsGetRouterV1Handler(
+      makeCtx({ runQuery, runMutation }),
+      new Request("https://example.com/api/v1/skills/demo/versions/1.0.0"),
+    );
+    expect(response.status).toBe(200);
+    const json = await response.json();
+    expect(json.version.security.status).toBe("pending");
+    expect(json.version.security.hasScanResult).toBe(false);
+    expect(json.version.security.scanners.llm.normalizedStatus).toBe("clean");
+  });
+
+  it("keeps malicious ClawScan verdict authoritative during rescans", async () => {
+    const runQuery = vi.fn(async (_query: unknown, args: Record<string, unknown>) => {
+      if ("slug" in args) {
+        return {
+          skill: { _id: "skills:1", slug: "demo", displayName: "Demo" },
+          latestVersion: null,
+          owner: { handle: "owner", displayName: "Owner", image: null },
+        };
+      }
+      if ("skillId" in args && "version" in args) {
+        return {
+          version: "1.0.0",
+          createdAt: 1,
+          changelog: "c",
+          changelogSource: "auto",
+          sha256hash: "a".repeat(64),
+          clawScanVerdict: "malicious",
+          clawScanState: "running",
+          llmAnalysis: {
+            status: "malicious",
+            verdict: "malicious",
+            checkedAt: 222,
+          },
+          files: [],
+        };
+      }
+      return null;
+    });
+    const runMutation = vi.fn().mockResolvedValue(okRate());
+    const response = await __handlers.skillsGetRouterV1Handler(
+      makeCtx({ runQuery, runMutation }),
+      new Request("https://example.com/api/v1/skills/demo/versions/1.0.0"),
+    );
+    expect(response.status).toBe(200);
+    const json = await response.json();
+    expect(json.version.security.status).toBe("malicious");
+    expect(json.version.security.hasWarnings).toBe(true);
+    expect(json.version.security.hasScanResult).toBe(true);
+  });
+
   it("does not treat a static scan by itself as a definitive scan result", async () => {
     const runQuery = vi.fn(async (_query: unknown, args: Record<string, unknown>) => {
       if ("slug" in args) {
@@ -1975,7 +2057,7 @@ describe("httpApiV1 handlers", () => {
     expect(json.version.security.hasWarnings).toBe(false);
     expect(json.version.security.hasScanResult).toBe(false);
     expect(json.version.security.virustotalUrl).toBeNull();
-    expect(json.version.security.scanners.static.normalizedStatus).toBe("pending");
+    expect(json.version.security.scanners.static.normalizedStatus).toBe("clean");
     expect(json.version.security.scanners.vt).toBeNull();
     expect(json.version.security.scanners.llm).toBeNull();
   });
@@ -2078,7 +2160,7 @@ describe("httpApiV1 handlers", () => {
     );
     expect(response.status).toBe(200);
     const json = await response.json();
-    expect(json.security.status).toBe("suspicious");
+    expect(json.security.status).toBe("review");
     expect(json.security.hasScanResult).toBe(true);
     expect(json.security.capabilityTags).toEqual([
       "crypto",
@@ -2311,7 +2393,7 @@ describe("httpApiV1 handlers", () => {
     expect(response.status).toBe(200);
     const json = await response.json();
     expect(json.version.version).toBe("1.0.0");
-    expect(json.security.status).toBe("suspicious");
+    expect(json.security.status).toBe("review");
     expect(json.moderation.scope).toBe("skill");
     expect(json.moderation.sourceVersion).toEqual({
       version: "2.0.0",
@@ -5355,6 +5437,8 @@ describe("httpApiV1 handlers", () => {
     {
       name: "malicious",
       release: {
+        clawScanVerdict: "malicious",
+        clawScanState: "complete",
         staticScan: {
           status: "malicious",
           reasonCodes: ["malicious.test"],
@@ -7156,6 +7240,8 @@ describe("httpApiV1 handlers", () => {
           version: "1.0.0",
           createdAt: 1,
           changelog: "init",
+          clawScanVerdict: "malicious",
+          clawScanState: "complete",
           verification: { scanStatus: "malicious" },
           files: [
             {

convex/httpApiV1/packagesV1.ts

@@ -412,6 +412,8 @@ type ReleaseLike = {
   verification?: Doc<"packageReleases">["verification"];
   extractedPackageJson?: Doc<"packageReleases">["extractedPackageJson"];
   sha256hash?: string;
+  clawScanVerdict?: Doc<"packageReleases">["clawScanVerdict"];
+  clawScanState?: Doc<"packageReleases">["clawScanState"];
   vtAnalysis?: Doc<"packageReleases">["vtAnalysis"];
   llmAnalysis?: Doc<"packageReleases">["llmAnalysis"];
   clawScanNote?: string;
@@ -2900,6 +2902,8 @@ export async function packagesGetRouterV1Handler(ctx: ActionCtx, request: Reques
           verification: result.version.verification ?? null,
           artifact: toReleaseArtifact(result.version, result.package.name),
           sha256hash: result.version.sha256hash ?? null,
+          clawScanVerdict: result.version.clawScanVerdict ?? null,
+          clawScanState: result.version.clawScanState ?? null,
           vtAnalysis: result.version.vtAnalysis ?? null,
           llmAnalysis: result.version.llmAnalysis ?? null,
           clawScanNote: result.version.clawScanNote ?? null,

convex/httpApiV1/skillsV1.ts

@@ -11,6 +11,7 @@ import { api, internal } from "../_generated/api";
 import type { Doc, Id } from "../_generated/dataModel";
 import type { ActionCtx } from "../_generated/server";
 import { getOptionalApiTokenUserId, requireApiTokenUser } from "../lib/apiTokenAuth";
+import { normalizeClawScanVerdict, type ClawScanState } from "../lib/clawScanVerdict";
 import { applyRateLimit } from "../lib/httpRateLimit";
 import { parseBooleanQueryParam, resolveBooleanQueryParam } from "../lib/httpUtils";
 import type {
@@ -106,6 +107,8 @@ type PublicSkillVersionResponse = {
   parsed?: PublicSkillVersionParsed;
   softDeletedAt?: number;
   sha256hash?: string;
+  clawScanVerdict?: Doc<"skillVersions">["clawScanVerdict"];
+  clawScanState?: Doc<"skillVersions">["clawScanState"];
   vtAnalysis?: Doc<"skillVersions">["vtAnalysis"];
   llmAnalysis?: Doc<"skillVersions">["llmAnalysis"];
   staticScan?: PublicSkillVersionStaticScan;
@@ -208,7 +211,14 @@ function normalizeModerationFromSkill(skill: SkillModerationShape) {
   };
 }
 
-type NormalizedSecurityStatus = "clean" | "suspicious" | "malicious" | "pending" | "error";
+type NormalizedSecurityStatus =
+  | "clean"
+  | "review"
+  | "warn"
+  | "suspicious"
+  | "malicious"
+  | "pending"
+  | "error";
 
 type SkillSecuritySnapshot = {
   status: NormalizedSecurityStatus;
@@ -277,26 +287,29 @@ async function runMutationRef<T>(ctx: ActionCtx, ref: unknown, args: unknown): P
 
 function isDefinitiveSecurityStatus(
   status: NormalizedSecurityStatus | null | undefined,
-): status is "clean" | "suspicious" | "malicious" {
-  return status === "clean" || status === "suspicious" || status === "malicious";
+): status is "clean" | "review" | "warn" | "suspicious" | "malicious" {
+  return (
+    status === "clean" ||
+    status === "review" ||
+    status === "warn" ||
+    status === "suspicious" ||
+    status === "malicious"
+  );
 }
 
-const SECURITY_STATUS_PRIORITY: Record<NormalizedSecurityStatus, number> = {
-  clean: 0,
-  error: 1,
-  pending: 2,
-  suspicious: 3,
-  malicious: 4,
-};
-
 function normalizeSecurityStatus(value: string | null | undefined): NormalizedSecurityStatus {
   const normalized = value?.trim().toLowerCase();
   switch (normalized) {
     case "benign":
     case "clean":
       return "clean";
+    case "review":
+      return "review";
+    case "warn":
+    case "warning":
+      return "warn";
     case "suspicious":
-      return "suspicious";
+      return "review";
     case "malicious":
       return "malicious";
     case "error":
@@ -314,11 +327,17 @@ function normalizeSecurityStatus(value: string | null | undefined): NormalizedSe
   }
 }
 
-function mergeSecurityStatuses(statuses: NormalizedSecurityStatus[]) {
-  if (statuses.length === 0) return "pending" satisfies NormalizedSecurityStatus;
-  return statuses.reduce((current, candidate) =>
-    SECURITY_STATUS_PRIORITY[candidate] > SECURITY_STATUS_PRIORITY[current] ? candidate : current,
-  );
+function normalizeClawScanState(value: string | null | undefined): ClawScanState | null {
+  const normalized = value?.trim().toLowerCase();
+  if (
+    normalized === "pending" ||
+    normalized === "running" ||
+    normalized === "complete" ||
+    normalized === "error"
+  ) {
+    return normalized;
+  }
+  return null;
 }
 
 function hasLlmDimensionWarnings(dimensions: LlmEvalDimension[] | undefined) {
@@ -333,7 +352,13 @@ function hasLlmDimensionWarnings(dimensions: LlmEvalDimension[] | undefined) {
 function buildSkillSecuritySnapshot(
   version: Pick<
     PublicSkillVersionResponse,
-    "sha256hash" | "vtAnalysis" | "llmAnalysis" | "staticScan" | "capabilityTags"
+    | "sha256hash"
+    | "clawScanVerdict"
+    | "clawScanState"
+    | "vtAnalysis"
+    | "llmAnalysis"
+    | "staticScan"
+    | "capabilityTags"
   >,
 ): SkillSecuritySnapshot | null {
   const capabilityTags = version.capabilityTags ?? [];
@@ -344,22 +369,40 @@ function buildSkillSecuritySnapshot(
 
   if (!sha256hash && !vt && !llm && !staticScan && capabilityTags.length === 0) return null;
 
-  const staticStatus =
-    staticScan?.status?.trim().toLowerCase() === "malicious"
-      ? ("malicious" satisfies NormalizedSecurityStatus)
-      : null;
+  const staticStatus = staticScan ? normalizeSecurityStatus(staticScan.status) : null;
   const vtStatus = vt ? normalizeSecurityStatus(vt.verdict ?? vt.status) : null;
   const llmStatus = llm ? normalizeSecurityStatus(llm.verdict ?? llm.status) : null;
-
-  const statuses: NormalizedSecurityStatus[] = [];
-  if (staticStatus) statuses.push(staticStatus);
-  if (llmStatus) statuses.push(llmStatus);
-  if (statuses.length === 0 && sha256hash) statuses.push("pending");
-  const status = mergeSecurityStatuses(statuses);
-  const hasScanResult =
-    isDefinitiveSecurityStatus(staticStatus) || isDefinitiveSecurityStatus(llmStatus);
+  const clawScanVerdict = normalizeClawScanVerdict(version.clawScanVerdict);
+  const clawScanStatus = clawScanVerdict
+    ? (clawScanVerdict satisfies NormalizedSecurityStatus)
+    : null;
+  const clawScanState = normalizeClawScanState(version.clawScanState);
+
+  let status: NormalizedSecurityStatus = "pending";
+  let hasScanResult = false;
+  if (clawScanStatus === "malicious") {
+    status = "malicious";
+    hasScanResult = true;
+  } else if (clawScanState === "pending" || clawScanState === "running") {
+    status = "pending";
+  } else if (clawScanState === "error") {
+    status = "error";
+  } else if (clawScanStatus) {
+    status = clawScanStatus;
+    hasScanResult = true;
+  } else if (clawScanState === "complete") {
+    status = isDefinitiveSecurityStatus(llmStatus) ? llmStatus : "error";
+    hasScanResult = isDefinitiveSecurityStatus(llmStatus);
+  } else if (llmStatus) {
+    status = llmStatus;
+    hasScanResult = isDefinitiveSecurityStatus(llmStatus);
+  }
   const hasWarnings =
-    status === "suspicious" || status === "malicious" || hasLlmDimensionWarnings(llm?.dimensions);
+    status === "review" ||
+    status === "warn" ||
+    status === "suspicious" ||
+    status === "malicious" ||
+    hasLlmDimensionWarnings(llm?.dimensions);
 
   const checkedAtCandidates = [staticScan?.checkedAt, vt?.checkedAt, llm?.checkedAt].filter(
     (value): value is number => typeof value === "number",