Back to skill
Skillv0.1.3
ClawScan security
HTMLPix API · ClawHub's context-aware review of the artifact, metadata, and declared behavior.
Scanner verdict
BenignMar 14, 2026, 11:50 AM
- Verdict
- benign
- Confidence
- high
- Model
- gpt-5-mini
- Summary
- The skill is an instruction-only API spec for HTMLPix and its declared behavior and requirements are consistent with its stated purpose (no installs, no requested secrets, no unrelated capabilities).
- Guidance
- This skill is essentially documentation for the HTMLPix API and appears coherent and low-risk. Before using it: (1) verify the API base URL and endpoint details against official HTMLPix docs (skill source/homepage is unknown), (2) never paste your real API keys into chat—keep keys in your app environment and use the skill to generate example code or server-side integration patterns, and (3) be cautious if the agent generates runnable code that embeds credentials; replace placeholders with secure environment-variable access in production.
Review Dimensions
- Purpose & Capability
- okName/description match the SKILL.md: the document is an API contract for HTMLPix HTML-to-image operations (minting signed URLs, template CRUD, rendering). The skill requests no binaries, env vars, or installs — appropriate for an instruction-only API helper.
- Instruction Scope
- okSKILL.md contains only API endpoint contracts, auth flow description, error codes, and usage guidance for generating code/curl/SDK calls. It does not instruct the agent to read unrelated files, access system config, exfiltrate data, or call unexpected external endpoints. It explicitly warns not to call private endpoints from client-side/browser code.
- Install Mechanism
- okThere is no install spec (instruction-only). No downloads or extracts occur and no code is written to disk, which is lowest-risk for install mechanisms.
- Credentials
- okThe manifest declares no required env vars or credentials. The SKILL.md describes the API's own Authorization header and API key format (hpx_...), which is expected for an API reference—there is no attempt to collect unrelated secrets or request platform credentials.
- Persistence & Privilege
- okalways is false and the skill is user-invocable; it does not request persistent system-wide presence or attempt to modify other skills or agent config. Autonomous invocation is allowed (platform default) but the skill content is read-only API docs.