portfolio-case-study-forge
Security checks across static analysis, malware telemetry, and agentic risk
Overview
This is a coherent local drafting helper for portfolio case studies, with no evidence of hidden networking, credential use, or destructive behavior.
This skill appears safe for normal drafting use. Before running the helper script, choose an output filename that will not overwrite existing work, and avoid sharing confidential project/client details unless you are comfortable using them in the case-study draft.
Static analysis
No static analysis findings were reported for this release.
VirusTotal
VirusTotal findings are pending for this skill version.
Risk analysis
Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.
If run carelessly, the script could replace an existing file with the same output name.
The helper script writes a scaffold JSON file to a user-controllable output path, defaulting to case_study_scaffold.json. This is purpose-aligned but can overwrite an existing file at that path.
ap.add_argument("--out", default="case_study_scaffold.json") ... json.dump(TEMPLATE, open(args.out, "w", encoding="utf-8"), ensure_ascii=False, indent=2)Run it from the intended project directory and choose a non-conflicting --out path if you want to preserve existing files.
It may be harder to confirm the exact release lineage or compare this package against an upstream project.
The package contents are small and auditable, but the registry metadata and SKILL.md version do not match, and no upstream source or homepage is provided.
Version: 1.0.0 ... Source: unknown ... Homepage: none; SKILL.md frontmatter declares version: 1.1.0
Review the included files before installing and treat the bundled artifacts as the source of truth for this package.