Radiology Image Quiz
Security checks across static analysis, malware telemetry, and agentic risk
Overview
This appears to be a simple local radiology quiz generator, with no evidence of malicious behavior, but its documentation and package metadata have some low-risk inconsistencies.
This skill looks safe for local educational quiz generation. Before using it, verify the package source if provenance matters, run only the included scripts/main.py workflow, and provide de-identified case data rather than real patient information.
Static analysis
No static analysis findings were reported for this release.
VirusTotal
VirusTotal findings are pending for this skill version.
Risk analysis
Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.
If the selected case file contains patient identifiers or other sensitive details, those details could appear in the quiz output.
The script reads a local file path supplied at runtime and includes the loaded case data in generated quiz output.
parser.add_argument("--cases", "-c", help="JSON file with cases") ... with open(args.cases) as f:
cases = json.load(f)Confirm the exact JSON input file before running and use de-identified educational case data.
Some documented commands may fail or prompt a user or agent to look for code that is not included in the reviewed package.
The documentation references a radiology_quiz module/script that is not present in the provided file manifest, which only includes scripts/main.py as code.
from scripts.radiology_quiz import RadiologyQuiz ... python scripts/radiology_quiz.py
Use only the reviewed scripts/main.py entry point unless the missing file is supplied and reviewed separately.