Image Cropper
Security checks across malware telemetry and agentic risk
Overview
This skill appears to do what it claims: crop local images from annotation files and save the results, with no evidence of credential use, networking, exfiltration, or hidden behavior.
This looks like a normal local image-processing helper. Before installing, make sure you are comfortable installing Pillow and run it only on image, label, and output folders you intentionally choose.
VirusTotal
VirusTotal findings are pending for this skill version.
Risk analysis
Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.
Installing the dependency may fetch code from the Python package ecosystem.
The skill depends on a third-party Python package installed via an unpinned pip command. This is expected for image cropping, but users should be aware of the dependency source.
pip install pillow
Install Pillow from a trusted package index or pin a known-good version if reproducibility is important.
The skill will create image files in the output path you provide.
The script creates the requested output directory and writes cropped image files there. This is central to the skill's purpose, but it can overwrite or create files in the chosen output location.
output_dir.mkdir(parents=True, exist_ok=True) ... cropped.save(output_path, quality=args.quality)
Use a dedicated output directory and avoid pointing it at locations containing important files with matching names.