Skillv1.0.0

ClawScan security

Markdown to Page · ClawHub's context-aware review of the artifact, metadata, and declared behavior.

BenignMar 10, 2026, 5:30 AM

Verdict: benign
Confidence: high
Model: gpt-5-mini
Summary: The skill's files and runtime instructions are coherent with its stated purpose (converting Markdown to styled HTML); it does not request external credentials or installs, but it will read local files referenced by the Markdown and produce raw HTML output which can contain active content.
Guidance: This skill appears to do what it says: it runs a bundled Python script to convert a Markdown file to HTML. Before installing or running it, consider: (1) The script will read any local files referenced by image links in the Markdown (including absolute paths) and embed their bytes into the output when --embed-images is used — do not run it on untrusted Markdown that points to sensitive local files. (2) The generated HTML may include raw HTML from the input and can therefore execute scripts when opened in a browser; avoid opening/sharing output created from untrusted sources. (3) Pillow is optional; if missing the script will fall back to base64-encoding raw bytes. If you want extra safety, review the included scripts/md_to_page.py source locally and run it on trusted files only.

Purpose & Capability: okName/description match the included script and SKILL.md: the tool converts markdown to styled HTML, supports directive blocks, and optionally embeds/compresses local images. No unexplained credentials, binaries, or config paths are requested.
Instruction Scope: noteSKILL.md instructs the agent to run the included Python script on an input .md and output an .html file. The script will read the input markdown and any local files referenced by image links (relative to the input file). It does not contact external endpoints. Be aware the generated HTML may include raw HTML from the Markdown and thus can contain active script/content if the input includes it.
Install Mechanism: okNo install spec is provided (instruction-only with an included script). Nothing is downloaded from external URLs; code is bundled with the skill. This is low install risk.
Credentials: okThe skill requires no environment variables, credentials, or system config paths. The only filesystem access performed is reading the input Markdown and any local image files referenced by it (expected for image embedding).
Persistence & Privilege: okalways is false and the skill does not request persistent or elevated platform privileges. It does not modify other skills or system-wide settings.