Bestseller Writer
Security checks across static analysis, malware telemetry, and agentic risk
Overview
This appears to be a coherent book-generation skill, but it relies on Anthropic API access, npm dependencies, autonomous multi-call generation, and strong publishing-income claims that users should review before use.
Before installing, be comfortable running npm dependencies and using an Anthropic API key for a potentially large number of model calls. Monitor API cost, avoid confidential inputs unless cloud processing is acceptable, choose a safe output directory, and carefully edit/fact-check any generated manuscript or KDP package before publishing.
Static analysis
No static analysis findings were reported for this release.
VirusTotal
VirusTotal findings are pending for this skill version.
Risk analysis
Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.
Running the skill can consume Anthropic API quota and may incur charges under the user's account.
The script requires a cloud API credential, while the registry metadata declares no required environment variables or primary credential. This is purpose-aligned, but it gives the skill access to bill/use the user's Anthropic account.
Requires: ANTHROPIC_API_KEY in env
Use a dedicated or limited Anthropic API key if possible, monitor usage, and make the credential requirement clear before running the script.
Book ideas, drafts, outlines, and generated manuscript content may be processed by Anthropic.
The user's idea and generated book context are sent to an external model provider. This is expected for the skill, but it means the workflow is not local-only.
const client = new Anthropic(); ... runAgent(client, MODEL_PLANNER, buildPlannerPrompt(IDEA, GENRE, CHAPTERS));
Avoid entering highly sensitive, confidential, or proprietary material unless you are comfortable sending it to the configured model provider.
A single invocation may generate substantial API activity and cost, especially with higher chapter or batch settings.
The skill is designed to run a multi-stage autonomous pipeline with parallel chapter writers. This matches the stated purpose, but it can perform many model calls after a single user request.
Fully autonomous... the agent follows this pipeline directly using `sessions_spawn`
Review chapter count, batch size, and model choices before running, and monitor API spending during long generations.
The installed dependency version may vary over time, which can affect reproducibility and supply-chain review.
The skill uses an npm dependency with a semver range, so `npm install` may fetch a later compatible version rather than an exact pinned package.
"@anthropic-ai/sdk": "^0.39.0"
Prefer a lockfile or pinned dependency version when installing in sensitive environments.
Users may overestimate the likelihood of revenue or publication readiness from generated content.
The documentation makes strong earnings and publishing-success claims that are not evidenced by the artifacts. This is marketing language rather than hidden behavior, but users should not treat it as guaranteed.
~$1.20 API cost per book → $50-500/month passive income per title
Independently review, edit, fact-check, and check Amazon KDP, copyright, and advertising rules before publishing or spending money on promotion.