Recruiting Interview Kit
Security checks across malware telemetry and agentic risk
Overview
Prompt-injection indicators were detected in the submitted artifacts (unicode-control-chars); human review is required before treating this skill as clean.
Use this as a drafting aid, not as a final hiring decision-maker. Review outputs for bias and legal appropriateness, redact unnecessary candidate personal information, and only run the optional Python script with input and output paths you trust. ClawScan detected prompt-injection indicators (unicode-control-chars), so this skill requires review even though the model response was benign.
VirusTotal
VirusTotal findings are pending for this skill version.
Risk analysis
Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.
If invoked, the helper may read the file selected as input and write a generated report to the selected output path.
The skill documents optional local command execution that reads an input file and writes an output file. This is disclosed and purpose-aligned, but users should notice the file paths being used.
如运行环境允许 shell / exec,可使用:`python3 "{baseDir}/scripts/run.py" --input <输入文件> --output <输出文件>`Run it only on intended recruiting materials, use a safe output path, and review the generated content before using it in a hiring process.
You have less external context for who authored or maintains the package.
The provided registry metadata does not identify a verifiable source and uses a placeholder homepage. No remote installer or hidden dependency is shown, so this is a provenance note rather than a behavioral concern.
Source: unknown; Homepage: https://example.invalid/skills/recruiting-interview-kit
Prefer installing from a trusted registry entry and inspect the included files before running the helper script.