SVG 会议纪要卡片
ReviewAudited by ClawScan on May 11, 2026.
Overview
The meeting-card workflow is coherent, but the PNG converter can silently install an unpinned Python package and runs a headless browser with reduced sandboxing, so it should be reviewed before use.
Only install this if you are comfortable with a local helper script that may install cairosvg from PyPI when dependencies are missing. Prefer running it in a virtual environment or container, review the PNG conversion script first, and avoid converting arbitrary untrusted SVG files.
Findings (3)
Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.
Running the advertised PNG conversion may unexpectedly change the user's Python environment and trust a live third-party package install.
If cairosvg is missing, the helper script automatically downloads and installs an unpinned package from PyPI and uses --break-system-packages, despite the registry declaring no install spec or required binaries.
subprocess.check_call([sys.executable, "-m", "pip", "install", "--break-system-packages", "-q", "cairosvg"])
Declare dependencies explicitly, pin package versions, avoid --break-system-packages, and require user approval or a virtual environment before installing anything.
A crafted SVG could cause unexpected browser behavior, such as loading external resources, especially because browser sandboxing is reduced.
The converter embeds the SVG content directly into an HTML page and renders it with headless Chrome using --no-sandbox. This is purpose-aligned for generated SVG cards, but unsafe if arbitrary or injected SVG content is rendered.
const html = `<!DOCTYPE html>...<body>${cleaned}</body></html>`; ... puppeteer.launch({ headless: true, args: ['--no-sandbox'] });Render only trusted/generated SVGs, sanitize SVG input, disable JavaScript and network access during rendering where possible, and avoid --no-sandbox unless strictly required.
Users may believe the skill has no runtime network/package-install behavior beyond Puppeteer setup, while the fallback path can contact PyPI.
This assurance is incomplete because the provided converter can also run a PyPI `pip install cairosvg` fallback. The artifacts do not show transcript exfiltration, but users may underestimate dependency/network activity.
no network requests beyond the one-time `npm install` of Puppeteer. No data is stored externally or sent to any service.
Update the security documentation to accurately describe all dependency installation paths and when network access may occur.