Back to skill
Skillv3.0.0
ClawScan security
Doc Generator · ClawHub's context-aware review of the artifact, metadata, and declared behavior.
Scanner verdict
BenignMar 30, 2026, 10:14 AM
- Verdict
- benign
- Confidence
- high
- Model
- gpt-5-mini
- Summary
- The skill's stated purpose (document/report generation) aligns with what it requests and instructs: it installs and invokes the AnyGen CLI and requires a single AnyGen API key — nothing appears disproportionate or unrelated.
- Guidance
- This skill appears coherent, but because it installs a third‑party npm CLI and uses an API key, verify the @anygen/cli package and the AnyGen service before installing. Prefer a limited-scope API key (not a high‑privilege or long-lived key), review AnyGen's privacy/data handling, and consider installing the CLI in a controlled environment (or inspecting the package) if you are security-sensitive. If the skill's source/publisher is unknown, treat the npm package and API key with extra caution and avoid sharing secrets beyond the single required ANYGEN_API_KEY.
Review Dimensions
- Purpose & Capability
- okName/description ask for document/report generation and the skill requires the anygen CLI and ANYGEN_API_KEY — these are appropriate and expected for a third‑party document generation service.
- Instruction Scope
- okSKILL.md only instructs the agent to call the AnyGen CLI, perform authentication (web login or API key), and use the anygen-workflow-generate skill; it does not request unrelated files, system paths, or additional credentials.
- Install Mechanism
- noteInstall spec is an npm/node package (@anygen/cli) that creates the anygen binary. This is coherent for a CLI dependency; npm installs carry the usual supply‑chain risk but the source is a normal package registry use, not an arbitrary URL or archive.
- Credentials
- okOnly a single service credential (ANYGEN_API_KEY) is required and it's declared as the primary credential. No unrelated secrets or config paths are requested.
- Persistence & Privilege
- okSkill is not force-included (always: false), and does not request elevated or cross-skill configuration changes. Autonomous invocation (disable-model-invocation false) is normal and not, by itself, concerning.