Skillv1.0.1

ClawScan security

jina-ai-reader · ClawHub's context-aware review of the artifact, metadata, and declared behavior.

BenignMar 4, 2026, 2:06 AM

Verdict: benign
Confidence: high
Model: gpt-5-mini
Summary: The skill's code, instructions, and requirements are consistent with its stated purpose: it calls Jina.ai's r.jina.ai service to fetch rendered Markdown and does not request unrelated credentials or install additional software.
Guidance: This skill legitimately uses Jina.ai's public r.jina.ai endpoint to fetch rendered Markdown, so its behavior is coherent. Before installing, consider: (1) privacy—any page you fetch (including paywalled or private content) will be processed by a third party (r.jina.ai); avoid sending sensitive pages or credentials; (2) legality/terms—bypassing paywalls may violate site terms of service or copyright; (3) runtime—ensure your Node version supports global fetch (Node 18+ recommended). If you need local-only scraping or to avoid sending content to an external service, prefer a local headless-browser-based extractor instead.

Purpose & Capability: okName/description promise (fetch AI-friendly Markdown, handle JS pages/Twitter, no API key) matches the provided code and required binary (node). The script constructs requests to r.jina.ai and prints the returned Markdown — the requested binary and behavior are proportionate to the stated purpose.
Instruction Scope: noteThe SKILL.md only instructs running the included Node script; it does not read local files or request extra env vars. Important privacy note: the script sends the target URL to a third-party service (https://r.jina.ai/), so the page contents (including paywalled or sensitive pages) will be fetched/processed remotely. That is expected for this skill but is a data-exfiltration/privacy consideration users should understand.
Install Mechanism: okThere is no install spec (instruction-only plus a small included script). No downloads or archive extraction are performed, so nothing arbitrary is written to disk beyond running the provided script with the existing node runtime.
Credentials: okNo environment variables, credentials, or config paths are requested. The only required runtime is node, which is appropriate for the provided .mjs script.
Persistence & Privilege: okThe skill does not request permanent presence (always:false), does not modify other skills or system-wide settings, and does not store credentials — no elevated persistence or cross-skill access is requested.