Skillv1.0.0

ClawScan security

vhs-recorder · ClawHub's context-aware review of the artifact, metadata, and declared behavior.

Scanner verdict

BenignFeb 11, 2026, 9:07 AM

Verdict: benign
Confidence: high
Model: gpt-5-mini
Summary: This is an instruction-only documentation skill for the vhs terminal-recording tool; its files and runtime instructions align with that purpose and it does not request credentials or install code.
Guidance: This skill is a documentation bundle for using the vhs tool and appears internally consistent. Before using it: (1) ensure you have vhs, ffmpeg and any other CLI tools installed yourself — the registry metadata doesn't enforce these prerequisites; (2) never run tape files or example commands from untrusted sources on production systems (examples include repo cloning and 'rm -rf' style commands); (3) use the ASCII preview or run in a disposable container/VM to validate tapes before producing final videos; (4) be aware this skill will only instruct you — it does not install software or request secrets, so the main risk is executing harmful shell commands you paste or run locally.

Review Dimensions

Purpose & Capability: noteThe name/description match the provided instructions and reference docs. The skill is instruction-only and documents using Charm's vhs plus common helpers (ttyd, ffmpeg). One minor inconsistency: the registry metadata lists no required binaries/env, while SKILL.md explicitly lists prerequisites (vhs, ttyd, ffmpeg). This is documentation mismatch but not an indication of hidden behavior.
Instruction Scope: noteThe SKILL.md and reference files stay within the expected scope (how to author tape files, timing, settings, formats). They include examples that run shell commands, clone repos, and even an example with 'rm -rf production-db/' demonstrating backspace recovery — these are example scenarios and not active code, but they illustrate potentially destructive commands. Users should avoid running untrusted tape files or example commands on production systems.
Install Mechanism: okNo install spec or code is provided (instruction-only). Nothing is downloaded or written to disk by the skill itself, which minimizes install-time risk.
Credentials: okThe skill declares no required environment variables or credentials. The documentation mentions an 'Env VAR "value"' tape command (used to set env for recordings) but that is an operational note, not a request for secrets. No unrelated credentials or config paths are requested.
Persistence & Privilege: okalways is false and the skill is user-invocable/autonomously callable by default (normal). The skill does not request persistent system presence or modify other skills/configs.