Skillv1.0.0

ClawScan security

AgentGen — HTML to PDF & Image · ClawHub's context-aware review of the artifact, metadata, and declared behavior.

BenignMar 3, 2026, 6:30 PM

Verdict: benign
Confidence: high
Model: gpt-5-mini
Summary: The skill's requirements and instructions match its stated purpose (calling the agentgen CLI / AgentGen API to render HTML to PDF/images); nothing requests unrelated credentials or system access, though there are modest privacy and install-source considerations to review before use.
Guidance: This skill appears to do what it says: it runs the 'agentgen' CLI which sends your HTML to agent-gen.com to produce PDFs or images. Before installing: (1) confirm the Homebrew tap (Agent-Gen-com/agentgen) and formula are from the official project and inspect the formula/binary if you can; (2) do not upload sensitive files — 'agentgen upload' makes assets publicly accessible for 24 hours; (3) free tier works without a key but is rate-limited and watermarked; if you set AGENTGEN_API_KEY you will be giving that key to the CLI to authenticate with agent-gen.com — ensure you trust the service and rotate the key if you later uninstall; (4) avoid sending personally identifiable or confidential HTML/content to the service unless you accept the privacy tradeoffs. If you want lower risk, consider reviewing the brew formula source or running the CLI in a restricted environment/container.

Purpose & Capability: okName/description, required binary (agentgen), and primary credential (AGENTGEN_API_KEY) all align with a CLI that talks to agent-gen.com. No unrelated env vars or binaries are requested.
Instruction Scope: noteSKILL.md only instructs use of the agentgen CLI and AgentGen API endpoints (image/pdf/upload/balance). It does not ask the agent to read unrelated files or secrets. Important operational note: 'agentgen upload' makes uploaded files publicly accessible for 24 hours and the free tier returns watermarked single-page output — these are functional behaviors with privacy implications (you should not upload sensitive content).
Install Mechanism: noteInstall uses a Homebrew tap (Agent-Gen-com/agentgen) and creates an 'agentgen' binary. Using a third-party brew tap is reasonable for CLI distribution but carries more risk than installing from a mainline package manager; verify the tap/formula and the binary's provenance before installing.
Credentials: okOnly a single API key (AGENTGEN_API_KEY) is declared as the primary credential, which is proportional to the described authenticated tier. The skill also documents a free tier that works without a key. No other unrelated credentials or paths are requested.
Persistence & Privilege: okSkill does not request always:true or other elevated persistence. It is user-invocable and allows autonomous invocation by default (normal). It does not instruct modifying other skills or system-wide settings.