Script to Storyboard
Security checks across static analysis, malware telemetry, and agentic risk
Overview
This looks like a straightforward local storyboard converter, with only minor notes about running a Python helper that reads a chosen script file and writes a CSV output.
This skill appears safe for its stated purpose. Before installing or using it, be aware that the optional helper runs locally with python3, reads the script file path you provide, and writes a CSV file that can overwrite the selected output path.
Static analysis
No static analysis findings were reported for this release.
VirusTotal
VirusTotal findings are pending for this skill version.
Risk analysis
Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.
If the wrong output path is supplied, an existing file could be overwritten with the storyboard CSV.
The helper reads a user-supplied input file and writes the output CSV path, overwriting that output file if it already exists. This is expected for a converter, but path selection matters.
input_file = sys.argv[1] output_file = sys.argv[2] if len(sys.argv) > 2 else 'storyboard.csv' ... with open(output_file, 'w', newline='', encoding='utf-8-sig') as f:
Run it only on intended script files and choose a non-critical output filename or folder.
The helper may fail if python3 is unavailable, and users should understand they are running the included local script.
The skill depends on a local python3 runtime for its helper script, while the metadata declares no required binaries. The dependency is plainly documented and uses only included code.
python3 scripts/convert.py <input.txt> [output.csv]
Verify python3 is available and review or trust the included script before using the helper command.