ClawHub

revol-presentation-html-generator

Security checks across static analysis, malware telemetry, and agentic risk

Overview

This instruction-only skill is coherent for generating technical presentations and articles, with the main user-visible considerations being project-source reading and third-party CDN libraries in generated HTML.

Before installing, confirm you are comfortable letting the agent read the project or paper you provide and include relevant technical details in the generated output. For sensitive presentations, review the HTML and consider replacing CDN dependencies with local copies.

Static analysis

No static analysis findings were reported for this release.

VirusTotal

65/65 vendors flagged this skill as clean.

View on VirusTotal

Risk analysis

Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.

#ASI02: Tool Misuse and Exploitation
Low
What this means

The generated slides or article may include details, code snippets, parameters, and architecture information from the project being analyzed.

Why it was flagged

The skill asks the agent to inspect project materials and source files so it can generate accurate technical content. This is aligned with the skill’s purpose, but it may involve private or proprietary code if the user points it at such a project.

Skill content
Read the project/paper thoroughly. Collect: Model configs (yaml/json) ... Core model code ... Training code ... Inference code ... README / paper
Recommendation

Use the skill only on projects or papers you intend to analyze, and specify any files or directories that should be excluded from the presentation.

#ASI04: Agentic Supply Chain Vulnerabilities
Low
What this means

Opening the generated HTML may contact CDN providers and execute those libraries in the browser.

Why it was flagged

The generated presentation template loads JavaScript and CSS from public CDNs. This is expected for a Reveal.js-based HTML deck, but it introduces normal third-party dependency and availability considerations.

Skill content
<link rel="stylesheet" href="https://cdn.jsdelivr.net/npm/reveal.js@4/dist/reveal.css"> ... <script src="https://cdn.jsdelivr.net/npm/mermaid@10/dist/mermaid.min.js"></script> ... <script src="https://cdn.jsdelivr.net/npm/mathjax@3/es5/tex-mml-chtml.js"></script>
Recommendation

If the presentation is for a sensitive or offline environment, consider vendoring the libraries locally or reviewing the generated HTML before sharing or presenting it.