Back to skill
Skillv1.0.0
ClawScan security
PLS URL to Markdown · ClawHub's context-aware review of the artifact, metadata, and declared behavior.
Scanner verdict
BenignFeb 23, 2026, 1:33 AM
- Verdict
- Benign
- Confidence
- high
- Model
- gpt-5-mini
- Summary
- The skill's instructions, dependencies, and required actions are coherent with its stated purpose of fetching web pages and converting them to Markdown; it is an instruction-only recipe that does not request credentials or install arbitrary code by itself.
- Guidance
- This skill is an instruction-only recipe for converting web pages to Markdown and appears coherent. Before using: (1) be cautious when installing suggested packages (pip install) — install from trusted sources; (2) avoid allowing an autonomous agent to fetch arbitrary URLs without user confirmation, since fetching untrusted pages can expose you to malicious content or large data exfiltration; (3) the SKILL.md contains example stubs rather than a complete script, so review or implement the code yourself rather than running opaque one-liners you don't understand. If you need the agent to run this autonomously, consider limiting which URLs it may fetch or requiring explicit user approval for each fetch.
Review Dimensions
- Purpose & Capability
- okThe name and description (fetch URL → convert to Markdown) match the SKILL.md contents. Suggested tools and libraries (requests, BeautifulSoup, markdownify, html2text, pandoc) are appropriate and proportional to the task.
- Instruction Scope
- okRuntime instructions are limited to fetching a URL, parsing HTML, and converting it to Markdown. They do not instruct reading unrelated files, harvesting environment variables, or sending data to external endpoints beyond the fetched URL.
- Install Mechanism
- noteThis is an instruction-only skill (no install spec). It recommends pip packages and common CLI tools; those are typical and reasonable, but installing packages from PyPI or system binaries always carries the usual supply-chain and privilege risks—verify sources before installing.
- Credentials
- okNo environment variables, credentials, or config paths are requested, which is proportionate for this functionality.
- Persistence & Privilege
- okThe skill does not request persistent presence (always:false) and has no install steps that modify agent/system-wide configuration, so it does not demand elevated persistence privileges.