Skillv0.1.1

ClawScan security

Capcut Mate Skill · ClawHub's context-aware review of the artifact, metadata, and declared behavior.

BenignMar 12, 2026, 7:04 AM

Verdict: benign
Confidence: high
Model: gpt-5-mini
Summary: The skill's code and instructions match its stated purpose (automating a local CapCut Mate API); nothing in the bundle requests unrelated credentials or hidden endpoints, though the registry metadata omits a needed environment variable.
Guidance: This skill appears to do what it says: it wraps calls to a CapCut Mate server. Before installing, verify the CapCut Mate server repository (the SKILL.md points to https://github.com/Hommy-master/capcut-mate.git) and only deploy it on a host you control. Ensure you set CAPCUT_MATE_URL in your environment (the registry metadata should declare this but currently does not). Do not expose the local CapCut Mate server port publicly unless you trust the deployment and understand privacy implications for uploaded media. If you need higher assurance, review the upstream capcut-mate codebase and run it in an isolated environment (container or VM) before connecting the skill.

Purpose & Capability: noteThe skill is described as a CapCut Mate automation helper and the code + SKILL.md implement and document calls to a CapCut Mate server API. One minor mismatch: registry metadata lists no required environment variables, but both the code and SKILL.md expect CAPCUT_MATE_URL to be configured.
Instruction Scope: okSKILL.md limits runtime actions to deploying/connecting to a CapCut Mate server (git clone, uv/docker-compose), configuring CAPCUT_MATE_URL, and using the documented API. The instructions do not ask the agent to read arbitrary system files or exfiltrate data to unrelated endpoints.
Install Mechanism: okThis is an instruction-only skill with a small wrapper index.js and package.json. The SKILL.md tells users to clone a GitHub repo or use docker-compose — GitHub and docker-compose are normal sources for open-source projects. There is no opaque download-from-personal-server or extract step in the skill bundle itself.
Credentials: concernThe skill needs a CAPCUT_MATE_URL (used by index.js) but the registry metadata does not declare it as a required env var; this is an inconsistency that should be corrected. No sensitive credentials (API keys, tokens, passwords) are requested by the skill.
Persistence & Privilege: okThe skill is not always-enabled and does not request elevated/persistent system privileges or modify other skills' configurations. It uses standard network calls to the configured CapCut Mate endpoint.