Skillv0.1.0

ClawScan security

Libvips Image · ClawHub's context-aware review of the artifact, metadata, and declared behavior.

Scanner verdict

BenignFeb 28, 2026, 1:40 AM

Verdict: benign
Confidence: high
Model: gpt-5-mini
Summary: The skill is internally consistent with an image-processing purpose — it includes install and runtime scripts for libvips/pyvips and does not request credentials — but the installer uses a downloadable install helper (curl|sh) which is a moderate installation-time risk that you should review before running.
Guidance: This skill appears to do what it says: image processing with libvips/pyvips. Before installing or running install.sh: 1) Review scripts/install.sh line-by-line (it runs package manager commands and may invoke sudo). 2) Avoid blindly piping remote scripts to sh; if the script wants to install 'uv' from https://astral.sh, manually inspect that URL or install uv via a trusted channel first. 3) Because the installer runs system package installs, run it in a disposable environment (container or VM) or use SKIP_SUDO=1/AUTO_MODE where appropriate. 4) Note the SKILL.md references Windows .ps1/.bat installers that are not included — if you need Windows support, ask the author for the missing files. 5) No credentials are requested by the skill. If you’re uncomfortable with the remote install step, you can manually install libvips and pyvips and then use the provided scripts without running the remote installer.
Findings: [curl_pipe_sh] expected: scripts/install.sh may run curl -LsSf https://astral.sh/uv/install.sh | sh (or wget -qO- ... | sh) to install the 'uv' helper. Installing a helper from a remote script is consistent with the install flow but is a risky install mechanism; review the external installer before execution.

Review Dimensions

Purpose & Capability: okName/description (libvips image processing) align with included files: vips_tool.py, vips_batch.py, test script, and an installer. All code implements image operations (resize, convert, watermark, batch processing) and dependencies (pyvips/libvips) are expected.
Instruction Scope: noteSKILL.md and run.sh direct only image-processing actions and installation steps. They do ask you to run scripts/install.sh which modifies system packages and installs pyvips; documentation references Windows install.ps1 and run.bat that are not present in the bundle (doc/code mismatch). Instructions do not attempt to read unrelated credentials or system config.
Install Mechanism: concernThere is no registry install spec, but scripts/install.sh is provided and performs package-manager installs (apt/dnf/pacman/apk/brew) which require sudo. The script may download and execute an external installer for 'uv' via curl/wget piped to sh (https://astral.sh/uv/install.sh). Downloading-and-executing remote scripts is a moderate-to-high risk and should be reviewed/verified before running.
Credentials: okThe skill declares no required env vars or credentials. install.sh honors optional env flags (AUTO_MODE, VERBOSE, SKIP_SUDO) only. No hidden credential exfiltration or requests for unrelated secrets were found.
Persistence & Privilege: okSkill is not marked always:true and is user-invocable. It does not request to modify other skills or system settings beyond typical installation (package installs, PATH adjustments). No autonomous escalation flags were detected.