Back to skill
Skillv1.0.1
ClawScan security
CamScanner-Any2Markdown · ClawHub's context-aware review of the artifact, metadata, and declared behavior.
Scanner verdict
BenignApr 7, 2026, 3:23 AM
- Verdict
- benign
- Confidence
- high
- Model
- gpt-5-mini
- Summary
- The skill's instructions, required binaries, and behavior are consistent with a document-to-Markdown conversion wrapper that uploads files to CamScanner's API; it does not request unrelated credentials or elevated privileges, but it does send user files to a third‑party service so privacy considerations apply.
- Guidance
- This skill will upload whatever file path you give it to ai-tools.camscanner.com — do not use it for sensitive documents unless you trust CamScanner's server-side handling and privacy claims. If you need to protect sensitive data, prefer a local/offline converter or verify the service's privacy policy and TLS certificate. Test first with non‑sensitive files to confirm behavior, and be aware the SKILL.md's statement that files are not permanently stored is a remote-service claim you should validate with the provider if it matters.
Review Dimensions
- Purpose & Capability
- okName/description match the instructions: the SKILL.md documents a three-step upload→convert→download pipeline to CamScanner endpoints. Required binaries (curl, jq) are exactly what's needed to run the provided commands.
- Instruction Scope
- noteInstructions explicitly upload local files to ai-tools.camscanner.com, call conversion endpoints, and download results. This is within the stated purpose, but it does mean user files are transmitted to a third party; the SKILL.md asserts files are not permanently stored but that is a policy claim the skill cannot enforce locally.
- Install Mechanism
- okNo install spec or code files — instruction-only skill. That minimizes on-disk risk; nothing is being downloaded or executed beyond the shell commands the agent will run.
- Credentials
- okNo environment variables, credentials, or config paths are requested. The absence of required credentials is coherent with the provided unauthenticated API calls, although it may indicate the service accepts unauthenticated uploads (a privacy/usage concern, not an incoherence).
- Persistence & Privilege
- okSkill is not always-enabled and does not request persistent system changes or access to other skills' configs. It runs commands that operate only on user-specified file paths.