Back to skill
Skillv0.1.2
ClawScan security
Skill QR Card · ClawHub's context-aware review of the artifact, metadata, and declared behavior.
Scanner verdict
BenignMar 9, 2026, 9:36 AM
- Verdict
- benign
- Confidence
- high
- Model
- gpt-5-mini
- Summary
- The skill behavior matches its description: it generates QR-card SVG/PNG files locally using a Node script; nothing in the files attempts to access unrelated secrets, networks, or system credentials.
- Guidance
- This skill appears coherent and does what it claims, but check a few operational points before running: (1) Ensure your environment has Node and the 'qrcode' npm package (the repo does not declare an install step); (2) ImageMagick's 'convert' is optionally executed to create PNGs — verify you trust the 'convert' binary on the host; (3) The script writes files under ./images/ (it may overwrite similarly named files); (4) If you copy this into an automated agent, ensure the agent only supplies intended slugs/flags (the script will embed whatever you pass into the QR payload). If you want extra caution, run the script in a sandbox or container and review/lock the 'convert' binary before allowing automated invocation.
Review Dimensions
- Purpose & Capability
- okName/description align with requested files and actions. The included script generates QR payloads for install/ClawHub/GitHub links and produces SVG (and optional PNG) outputs — all expected for a 'QR card' generator.
- Instruction Scope
- okSKILL.md instructs the agent to run the bundled script with CLI flags and to return generated image paths. The script only reads CLI args, writes files under ./images/, and optionally invokes ImageMagick; it does not read other config files, environment variables, or network endpoints.
- Install Mechanism
- noteThere is no install spec. The script requires Node and the npm package 'qrcode' (not declared) and will optionally call the system 'convert' binary to produce PNGs. This is operationally important (dependencies must be present) but not a security red flag.
- Credentials
- okNo environment variables, credentials, or config paths are requested. The script only uses user-supplied CLI arguments (slug, title, mode, github, out).
- Persistence & Privilege
- okSkill is not always-enabled and does not request persistent system privileges. It writes output files to a local ./images/ directory (expected behavior) and does not modify other skills or system-wide configuration.