Skillv1.1.0

ClawScan security

media-processor · ClawHub's context-aware review of the artifact, metadata, and declared behavior.

BenignApr 29, 2026, 8:54 AM

Verdict: benign
Confidence: high
Model: gpt-5-mini
Summary: The skill's code, instructions, and requirements match its stated purpose of downloading and processing images/videos (compress, watermark, convert); nothing requested is disproportionate or unrelated.
Guidance: This skill appears to do what it says: download and process images/videos using ffmpeg and Pillow. Before installing, consider: (1) you must have FFmpeg available on the host (or rely on static-ffmpeg from pip); (2) the skill will download arbitrary HTTP/HTTPS inputs and write temporary files to /tmp and outputs to ./data/media or the input directory — avoid using untrusted URLs or run inside a sandbox to limit risk from malicious/malformed media; (3) ffmpeg and media libraries can be vulnerable to specially crafted files, so process untrusted inputs in an isolated environment and keep ffmpeg up to date; (4) the skill does not request secrets or network callbacks, but verify your runtime environment (permissions, disk space) before use.

Purpose & Capability: okName/description (media processing for images and video) align with the included code and SKILL.md: run.py implements downloading, image/video compression, watermarking, and conversion using PIL and ffmpeg-python.
Instruction Scope: noteSKILL.md confines runtime behavior to invoking run.py with type/action/input/output/text. The implementation will download HTTP/HTTPS inputs to /tmp or process URLs directly with ffmpeg and writes outputs to ./data/media or the input directory. This file I/O and network access are expected for the stated purpose but are worth noting (processing of arbitrary remote media is supported).
Install Mechanism: okThere is no install spec; it's an instruction+code skill. requirements.txt lists Pillow, ffmpeg-python, and static-ffmpeg. README correctly instructs installing system ffmpeg. No external download URLs or archive extraction are embedded in the install spec.
Credentials: okThe skill does not request environment variables, credentials, or config paths. It attempts to load a system font and optionally uses the static-ffmpeg Python package to adjust ffmpeg paths; both are reasonable for media processing and proportionate to the stated function.
Persistence & Privilege: okalways is false and the skill does not modify other skills or system-wide agent settings. It creates temporary files under /tmp and may create ./data/media for outputs — behavior consistent with its role.