Back to skill
Skillv1.0.2
ClawScan security
Operate Web Apps Built by Forguncy (aka 活字格) · ClawHub's context-aware review of the artifact, metadata, and declared behavior.
Scanner verdict
BenignMar 13, 2026, 1:18 PM
- Verdict
- Benign
- Confidence
- high
- Model
- gpt-5-mini
- Summary
- The skill is an instruction-only helper for running small JavaScript snippets in a browser to read Forguncy/SpreadJS table data; its requirements and instructions are consistent with that purpose.
- Guidance
- This skill runs arbitrary JavaScript inside a web page's context to read Forguncy/SpreadJS tables, so only use it on pages you trust and that actually host Forguncy/SpreadJS (it expects global Forguncy and GC.Spread objects). Because it executes in-page JS, it can access any data visible in the page — avoid using it on pages with sensitive information unless you trust the agent and environment. There are no extra installs or credentials requested. If you want extra assurance, test the snippets manually in the browser console on a safe sample page before enabling automated runs.
Review Dimensions
- Purpose & Capability
- okName/description match the SKILL.md: all content is about locating 'fgcname' and reading SpreadJS tables via in-page JS. No unrelated credentials, binaries, or installs are requested.
- Instruction Scope
- okInstructions are limited to DOM inspection and SpreadJS API calls run in the browser evaluate context (browser.act). They do not request unrelated files, system config, or external endpoints. They explicitly require a targetId from browser.open/snapshot, which is appropriate.
- Install Mechanism
- okNo install spec and no code files — instruction-only. This minimizes disk persistence and installation risk.
- Credentials
- okNo environment variables, credentials, or config paths are requested. The skill relies solely on running JS inside the target web page, which is proportional to the described functionality.
- Persistence & Privilege
- okalways is false and there is no self-modifying installation. The skill does not request elevated or persistent privileges beyond the normal ability to execute browser.evaluate scripts.