Back to skill
Skillv1.0.0
ClawScan security
Scanner · ClawHub's context-aware review of the artifact, metadata, and declared behavior.
Scanner verdict
BenignMar 12, 2026, 4:42 PM
- Verdict
- Benign
- Confidence
- medium
- Model
- gpt-5-mini
- Summary
- The skill's instructions, dependencies, and requests are consistent with a browser-first document scanning helper, but it relies on remote CDN and an unpinned @master package reference which you should review before use.
- Guidance
- This skill is coherent for document-scanning use, but be mindful that the examples load remote JavaScript from CDNs (OpenCV.js and a jscanify GH @master build) and suggest running 'npx serve' to host files locally. Before using in production or on sensitive images: (1) prefer pinned, versioned releases of jscanify (avoid @master), (2) consider hosting the libraries locally or using Subresource Integrity (SRI) if embedding CDN scripts, (3) vet the jscanify package/source (review its code or npm package), and (4) avoid running unreviewed npm packages with npx on machines holding sensitive data. If you need higher assurance, ask the skill author for a specific, versioned install instruction or a packaged implementation.
Review Dimensions
- Purpose & Capability
- okName/description match the instructions: the SKILL.md only describes selecting and running a document-scanning workflow (browser-first jscanify/OpenCV.js) and producing corrected images. No unrelated credentials, binaries, or system accesses are requested.
- Instruction Scope
- okRuntime instructions stay within the scanning task: installing jscanify, loading opencv.js, serving a local page, and calling jscanify.extractPaper/highlightPaper. The doc explicitly forbids overwriting originals and does not instruct reading unrelated system files or secrets.
- Install Mechanism
- noteThere is no packaged install spec (instruction-only), which is low-risk, but the recommended CDN usage points at jsdelivr GH with the @master ref (https://cdn.jsdelivr.net/gh/ColonelParrot/jscanify@master/...). Pulling an unpinned master branch from a CDN increases the risk of unexpected code changes. The plan to use 'npx serve .' will fetch and run a package on demand (transient install). These practices are common for quick dev workflows but worth hardening for production.
- Credentials
- okThe skill requires no environment variables, credentials, or config paths. The external endpoints listed (docs.opencv.org and cdn.jsdelivr.net) match the browser-first purpose.
- Persistence & Privilege
- okSkill is not always:true, is user-invocable, and does not request permanent/system-level presence or alter other skills' configs. Autonomous invocation is allowed (platform default) but not combined with other red flags.