Back to skill
Skillv2.0.3
ClawScan security
Image Processor · ClawHub's context-aware review of the artifact, metadata, and declared behavior.
Scanner verdict
BenignMay 1, 2026, 7:40 AM
- Verdict
- Benign
- Confidence
- high
- Model
- gpt-5.5
- Summary
- This skill appears to be a simple reference/documentation helper that prints static Image Processor guidance and does not request credentials, network access, persistence, or broad system permissions.
- Guidance
- This looks safe to install as a static reference skill. Be aware that it includes a shell script, but the provided script only prints documentation text and does not access files, credentials, network services, or modify your system.
Review Dimensions
- Purpose & Capability
- okThe stated purpose is a devtools/reference lookup skill, and the included script only prints static reference sections such as intro, quickstart, patterns, debugging, performance, security, migration, and cheatsheet.
- Instruction Scope
- okInstructions are limited to user-invoked reference commands. The artifacts do not instruct the agent to override user intent, run unsafe workflows, or treat untrusted content as authoritative.
- Install Mechanism
- okThere is no install spec and no required binaries or environment variables. Although a shell script is included, it contains static heredoc output and no external command execution beyond normal command dispatch.
- Credentials
- okThe skill declares no credentials, config paths, API keys, network access, or OS restrictions, which is proportionate for a documentation/reference helper.
- Persistence & Privilege
- okNo persistence, background behavior, credential use, account access, local indexing, or mutation authority is evidenced in the provided artifacts.