Back to skill
Skillv1.0.2
ClawScan security
dpp-pipeline · ClawHub's context-aware review of the artifact, metadata, and declared behavior.
Scanner verdict
BenignApr 16, 2026, 3:55 AM
- Verdict
- benign
- Confidence
- high
- Model
- gpt-5-mini
- Summary
- The skill's requests, scripts, and code are coherent with its stated purpose (creating a single-product placement video) and its required credential (ARK_API_KEY); no obvious misdirection or unrelated privilege requests were found.
- Guidance
- This skill appears to do what it claims: it uploads local media to Ark (required) and can optionally upload reference media to a TOS bucket if TOS credentials are provided. Before installing/running: (1) provide only a dedicated workspace directory and avoid placing unrelated secrets in its .env (the skill will load that file); (2) be aware scripts will create a local .venv and pip-install packages from PyPI (network activity during bootstrap); (3) do not run this on sensitive videos you don't want uploaded to Ark/TOS; (4) if you require higher assurance, inspect runtime/src/dpp_storyboard/ark_client.py and compose/upload paths and test in an isolated environment. Overall the required binaries, env vars, and network behavior are proportionate to the stated purpose.
Review Dimensions
- Purpose & Capability
- okName, description, and runtime code all implement a DPP storyboard/placement/compose/final-cut pipeline. Required binaries (python3, ffmpeg), the primary env var (ARK_API_KEY), and optional TOS credentials align with the documented behavior (uploading media to Ark, optionally uploading reference media to TOS).
- Instruction Scope
- okSKILL.md and the stage scripts confine operations to the caller workspace (or DPP_WORKDIR) and describe the exact workflow. The runtime reads a workspace .env for Ark/TOS configuration, uploads media to Ark, and may upload reference media to TOS when requested — these actions are consistent with the stated purpose. There are no instructions to read unrelated system files or exfiltrate data to unknown endpoints.
- Install Mechanism
- noteThe registry has no formal install spec, but the bundled scripts bootstrap a Python virtualenv and pip-install dependencies from PyPI (runtime/pyproject.toml includes 'tos' and 'volcengine-python-sdk[ark]'). This is expected for a Python-based tool but means network access to PyPI is used during bootstrap and packages will be installed on the host.
- Credentials
- okThe only declared required env var is ARK_API_KEY (primary credential) which the code uses. TOS_* variables are read as optional configuration when auto-upload is enabled. The runtime intentionally loads a workspace .env (via DPP_DOTENV_PATH) — users should avoid placing unrelated secrets in that file.
- Persistence & Privilege
- okalways is false and the skill does not request persistent platform privileges. Bootstrap creates a local .venv under the skill directory; scripts and code do not modify other skills or system-wide agent settings.