Markdown to HTML Converter

v1.0.1

Convert Markdown files to formatted HTML. Use when the user asks to convert, export, or save a Markdown file as HTML format. Triggers on phrases like "conver...

⭐ 0· 40·0 current·0 all-time

by@frankxpj

OpenClaw Prompt Flow

Install with OpenClaw

Best for remote or guided setup. Copy the exact prompt, then paste it into OpenClaw for frankxpj/md-2-html.

Previewing Install & Setup.

Prompt PreviewInstall & Setup

Install the skill "Markdown to HTML Converter" (frankxpj/md-2-html) from ClawHub.
Skill page: https://clawhub.ai/frankxpj/md-2-html
Keep the work scoped to this skill only.
After install, inspect the skill metadata and help me finish setup.
Use only the metadata you can verify from ClawHub; do not invent missing requirements.
Ask before making any broader environment changes.

Command Line

CLI Commands

Use the direct CLI path if you want to install manually and keep every step visible.

OpenClaw CLI

Canonical install target

openclaw skills install frankxpj/md-2-html

ClawHub CLI

Package manager switcher

npx clawhub@latest install md-2-html

Security Scan

VirusTotal

Suspicious

View report →

OpenClaw

Benign

high confidence

✓

Purpose & Capability

Name, description, SKILL.md, and included script all align: a zero-dependency Node.js converter for Markdown to HTML. There are no unrelated binaries, environment variables, or config paths requested.

Instruction Scope

Runtime instructions are limited to running the bundled Node script or requiring it as a module (expected). However, SKILL.md asserts "Safe escaping — Code blocks escape '<' and '>' to prevent XSS"; the implementation does escape content inside fenced code blocks via escapeHtml(), but several inline transformations are not escaped (inline code, image alt/text, link text/URLs and general paragraph text). That mismatch means converted output can contain raw HTML or characters that lead to XSS if the input is untrusted. SKILL.md also shows a CMS publish example but does not warn that the output may need sanitization before publishing.

✓

Install Mechanism

No install spec and the skill is instruction-only with a bundled JS file. No network downloads, package installs, or extraction steps are present. The zero-dependency claim matches the code.

✓

Credentials

No environment variables, credentials, or config paths are required or accessed; the code only reads from stdin or files provided as arguments.

✓

Persistence & Privilege

The skill is not always-included (always:false) and does not request elevated persistence or modify other skills/system settings. Autonomous invocation is enabled (default) which is normal and expected.

Assessment

This skill appears to do what it says and does not request credentials or external installs, but its HTML escaping is incomplete. If you will convert untrusted Markdown (e.g., user-submitted content) and publish HTML to a website or CMS, you should: (1) review and fix/augment the converter to properly escape or sanitize inline code, link text, image alt text and other content; (2) or run the produced HTML through a well-maintained HTML sanitizer (e.g., DOMPurify or your CMS's sanitizer) before publishing; (3) consider using a battle-tested Markdown library (marked, markdown-it) if you need robust parsing/security; and (4) test with malicious examples (e.g., <script> tags in inline code or malformed link/image syntax) to verify sanitization. The SKILL.md claim about "safe escaping" is incomplete—treat output as potentially unsafe until sanitized.

Like a lobster shell, security has layers — review code before you run it.

latestvk97f0jxjwdrxv21fm58zf2sc3d85g815

40downloads

0stars

2versions

Updated 14h ago

v1.0.1

MIT-0

Markdown to HTML Converter

Convert Markdown files or strings to well-formatted HTML, suitable for web display or CMS publishing.

Quick Start

node scripts/md2html.js <input.md> [output.html]

Or via stdin:

echo "# Hello World" | node scripts/md2html.js -

Or as a Node.js module:

var converter = require('./scripts/md2html.js');
var html = converter.markdownToHtml(markdownString);

Parameters

Parameter	Required	Description
`input.md`	Yes	Path to source Markdown file, or `-` for stdin
`output.html`	No	Output path (defaults to input name with .html)

Supported Markdown Features

Feature	Markdown Syntax	HTML Output
Headings	`# h1` through `###### h6`	`<h1>` through `<h6>`
Bold	`text`	`<strong>text</strong>`
Italic	`text`	`<em>text</em>`
Inline code	`code`	`<code>code</code>`
Code blocks	```lang ```	`<pre><code class="language-lang">`
Links	`[text](url)`	`<a href="url" target="_blank">text</a>`
Images	`![alt](url)`	`<img src="url" alt="alt">`
Unordered lists	`- item` or `* item`	`<ul><li>item</li></ul>`
Ordered lists	`1. item`	`<ol><li>item</li></ol>`
Blockquotes	`> text`	`<blockquote><p>text</p></blockquote>`
Horizontal rule	`---` or `***`	`<hr>`
Paragraphs	Blank line separation	`<p>text</p>`

Design Principles

Zero dependencies — Pure Node.js, works with v0.12+ (no npm install needed)
CMS-friendly — Output is clean HTML suitable for direct database insertion
No wrapper HTML — Outputs content HTML only (no <html>, <head>, <body>)
Safe escaping — Code blocks escape < and > to prevent XSS

Typical Use Cases

AI Content Pipeline — LLM generates Markdown → convert to HTML → publish to CMS
Static site generation — Batch convert .md files to .html
Documentation — Convert README.md to HTML for web display

Pipeline Integration Example

For automated AI content pipelines that generate Markdown but publish HTML:

var converter = require('./scripts/md2html.js');
var rawMarkdown = llmResponse.choices[0].message.content;
var htmlContent = converter.markdownToHtml(rawMarkdown);
// Now publish htmlContent to your CMS API

Comments

Loading comments...