ClawHub
Back to skill
v2.0.1

Snapdesign Rednote Clean

BenignClawScan verdict for this skill. Analyzed May 1, 2026, 6:31 AM.

Analysis

This instruction-only skill appears aligned with generating RedNote HTML cards, but users should know it sends content to OpenRouter and asks for an OpenRouter API key.

GuidanceThis skill is reasonable to use if you are comfortable sending the source text to OpenRouter and providing an OpenRouter API key. Use a dedicated key, avoid sensitive content, and render the returned HTML in a sandboxed iframe or similarly constrained preview environment.

Findings (3)

Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.

Abnormal behavior control

Checks for instructions or behavior that redirect the agent, misuse tools, execute unexpected code, cascade across systems, exploit user trust, or continue outside the intended task.

Agentic Supply Chain Vulnerabilities
SeverityInfoConfidenceMediumStatusNote
_meta.json
"slug": "rednote-card-generator", "version": "1.0.1", "publishedAt": 0

The included metadata does not match the registry-provided slug/version shown for the evaluated package. With no code files this is not evidence of malicious behavior, but it is a provenance/packaging inconsistency.

User impactIt may be harder to verify that the reviewed package identity and version metadata are cleanly maintained.
RecommendationConfirm the publisher and package identity before relying on it in a production workflow.
Permission boundary

Checks whether tool use, credentials, dependencies, identity, account access, or inter-agent boundaries are broader than the stated purpose.

Identity and Privilege Abuse
SeverityLowConfidenceHighStatusNote
SKILL.md
`openrouterApiKey` | Yes | A valid OpenRouter API key (Bearer token).

The skill requires a user-supplied OpenRouter credential. This is expected for calling OpenRouter, but it is still a sensitive token with potential billing/account impact.

User impactIf you provide the API key, the skill runner can use it to make OpenRouter requests on your account.
RecommendationUse a dedicated, revocable OpenRouter key with limited balance or quota where possible, and do not provide unrelated credentials.
Sensitive data protection

Checks for exposed credentials, poisoned memory or context, unclear communication boundaries, or sensitive data that could leave the user's control.

Insecure Inter-Agent Communication
SeverityLowConfidenceHighStatusNote
SKILL.md
POST https://openrouter.ai/api/v1/chat/completions ... "messages": [ { "role": "system", "content": "<SYSTEM_PROMPT>" }, { "role": "user", "content": "<USER_PROMPT>" } ]

The artifact discloses that the user’s content is sent to an external LLM provider through OpenRouter. This is purpose-aligned, but it crosses a third-party data boundary.

User impactText you ask it to convert into cards may be shared with OpenRouter and the selected model provider.
RecommendationAvoid sending confidential, regulated, or secret content unless you are comfortable with OpenRouter and model-provider handling of that data.