Back to skill
Skillv1.0.0
ClawScan security
Defuddle Obsidian · ClawHub's context-aware review of the artifact, metadata, and declared behavior.
Scanner verdict
BenignMar 4, 2026, 6:24 PM
- Verdict
- benign
- Confidence
- medium
- Model
- gpt-5-mini
- Summary
- The skill's instructions and requirements match its stated purpose (extracting markdown via the Defuddle CLI); there are no unexpected credential or file access demands, but the skill is instruction-only and asks you to install an npm package whose provenance is not provided, so verify the package before installing globally.
- Guidance
- This skill is internally consistent: it simply tells the agent how to run the Defuddle CLI to produce markdown. Before installing or running it, verify the defuddle npm package (check the npmjs.org page, repository URL, maintainer, and recent activity). If you don't trust the package, avoid a global install — prefer a sandboxed environment, a container, or a local project install (npm install defuddle) and inspect the package contents and install scripts. Be aware the CLI will fetch web pages to parse, so review privacy/usage implications for any pages with sensitive content.
Review Dimensions
- Purpose & Capability
- okThe name/description say the skill uses the Defuddle CLI to extract markdown from web pages; the SKILL.md provides concrete commands to do exactly that and does not request unrelated system access or credentials.
- Instruction Scope
- noteInstructions are narrowly scoped to running the defuddle CLI and saving/parsing output. They do suggest installing with `npm install -g defuddle`, which is expected but introduces an implicit install step outside the skill bundle (see install_mechanism). The skill does not instruct reading other files or env vars.
- Install Mechanism
- noteThe skill has no formal install spec, but the SKILL.md tells users/agents to run `npm install -g defuddle`. Installing an npm package globally is a normal way to obtain a CLI but carries the usual npm risks (install scripts, supply-chain concerns). No URLs or non-standard installers are provided by the skill itself.
- Credentials
- okThe skill declares no required environment variables, credentials, or config paths. That matches its stated purpose and the SKILL.md content.
- Persistence & Privilege
- okThe skill is not forced always-on and is user-invocable; it does not request elevated persistence or modify other skills or system-wide agent config.