Skillv1.0.3

ClawScan security

MarkItDown文档转换中文版 · ClawHub's context-aware review of the artifact, metadata, and declared behavior.

BenignApr 23, 2026, 12:43 PM

Verdict: benign
Confidence: high
Model: gpt-5-mini
Summary: The skill's code, instructions, and requirements are consistent with a MarkItDown-based document-to-Markdown converter and do not request unnecessary credentials or install arbitrary remote code.
Guidance: This skill appears to be a straightforward wrapper around the markitdown Python library. Before installing: (1) verify you trust the markitdown package source (pip/pypi or the linked GitHub); (2) run installs inside a virtual environment (avoid sudo for pip installs) to limit system impact; (3) only point the scripts at directories/files you trust — the scripts will read any file under the provided input path and write output files to the specified output path; (4) installing optional system deps (poppler, tesseract) requires package manager privileges — confirm those commands on your OS. If you need extra assurance, review the upstream Microsoft markitdown repository and inspect the package you will install.

Purpose & Capability: okName/description match the included scripts and SKILL.md: the skill wraps Microsoft's markitdown library to convert many document formats. The declared supported formats and example use cases align with the scripts' behavior.
Instruction Scope: okSKILL.md and scripts only instruct installing markitdown and running local conversion/extraction scripts. The scripts read files from user-supplied input paths and write conversion output to specified directories — behavior that matches the stated purpose. There are no instructions to read unrelated system files, environment variables, or send data to external endpoints.
Install Mechanism: okThere is no automated install spec; installation guidance uses standard tools: pipx or virtualenv with pip and normal system package managers (apt/brew) for optional dependencies (poppler, tesseract). No downloads from obscure URLs or extracted archives are present in the skill package.
Credentials: okThe skill requires no environment variables or credentials. Optional system packages are appropriate for PDF/OCR support. No excessive or unrelated secrets/config paths are requested.
Persistence & Privilege: okalways is false and the skill does not attempt to persist or modify agent-wide settings. Scripts only operate on user-supplied file system paths and do not alter other skills' configurations.