Skillv0.1.0

ClawScan security

ffmpeg-format-conversion · ClawHub's context-aware review of the artifact, metadata, and declared behavior.

Scanner verdict

SuspiciousApr 14, 2026, 12:37 PM

Verdict: suspicious
Confidence: medium
Model: gpt-5-mini
Summary: The skill's instructions are coherent for FFmpeg-based conversions, but the package metadata omits the obvious dependency on the ffmpeg binary and a few platform details, which is an unexplained mismatch you should be aware of.
Guidance: This skill appears to be a plain FFmpeg recipe set, but the metadata fails to declare ffmpeg as a required binary and gives no source/homepage. Before installing or letting an agent run it: (1) verify the ffmpeg binary you intend to use is present and from a trusted source (check ffmpeg --version and origin), (2) review and, if needed, modify batch loops to avoid accidental overwriting (test on copies), (3) be aware commands use Unix paths like /dev/null—adjust for Windows if needed, (4) prefer enabling manual invocation (not autonomous) until you confirm behavior, and (5) ask the skill author for declared dependencies and a source/homepage. These steps would increase confidence that the skill is safe and functions as expected.

Review Dimensions

Purpose & Capability: concernThe SKILL.md explicitly calls out ffmpeg command-line usage for conversion and batch processing, but the skill metadata declares no required binaries or install steps. A media-conversion skill legitimately requires the ffmpeg binary (or an alternative implementation); the missing declared dependency is inconsistent and unexplained. The skill also has no source/homepage listed, so provenance is unclear.
Instruction Scope: noteThe instructions stay on-topic (ffmpeg usage) and do not request unrelated system data or credentials. However they include batch shell loops that will operate on all matching files in the working directory and use platform-specific paths (e.g., /dev/null) without noting cross-platform considerations — this can lead to unintended mass overwrites or failures on non-Unix systems.
Install Mechanism: noteThis is an instruction-only skill (no installer), which is low risk from an install perspective. But because it relies on an external binary (ffmpeg) and provides no install guidance or declared requirement, users might run commands without confirming the tool's presence/version. That omission is a usability and provenance concern rather than a direct code-execution supply-chain risk.
Credentials: okThe skill requests no environment variables, credentials, or config paths. The lack of sensitive-access requests is appropriate for the stated purpose.
Persistence & Privilege: okThe skill is not forced-always and does not request elevated persistence. Autonomous invocation is allowed by default (platform standard) but there is no additional privileged configuration or modification of other skills.