Back to skill
Skillv1.0.0
ClawScan security
Video to GIF · ClawHub's context-aware review of the artifact, metadata, and declared behavior.
Scanner verdict
BenignMar 11, 2026, 4:04 PM
- Verdict
- benign
- Confidence
- high
- Model
- gpt-5-mini
- Summary
- The skill's files and instructions are consistent with its stated purpose (local video → GIF using ffmpeg/ffprobe); it requests no credentials, has no install step, and the included script only runs ffmpeg/ffprobe on local files.
- Guidance
- This skill appears to do exactly what it says: run ffmpeg/ffprobe locally to produce a GIF. Before running, ensure you have a trusted build of ffmpeg/ffprobe installed and that the input video comes from a safe source (maliciously crafted media can sometimes exploit native codecs). You can also review scripts/convert.py yourself — it only invokes ffmpeg/ffprobe and reads/writes local files, and it does not send data externally or require credentials. If you want extra caution, run the script in a restricted environment (container or VM).
Review Dimensions
- Purpose & Capability
- okName/description match the implementation: SKILL.md documents ffmpeg/ffprobe usage and the included scripts perform an ffmpeg-based conversion with options for fps, width, start, and duration. No unrelated services, binaries, or credentials are requested.
- Instruction Scope
- okSKILL.md limits actions to checking for ffmpeg/ffprobe, validating the input file, running the conversion, and returning output metadata. It does not instruct reading unrelated files, fetching network resources, or exfiltrating data. The README explicitly warns not to auto-install ffmpeg.
- Install Mechanism
- okNo install spec is provided (instruction-only), so nothing is downloaded or written at install time. This minimizes installation risk.
- Credentials
- okThe skill requires no environment variables, no credentials, and no config paths. All requested resources (ffmpeg/ffprobe and local file paths) are appropriate for the stated task.
- Persistence & Privilege
- okalways is false and the skill is user-invocable; it does not request persistent presence or try to modify other skills or system-wide settings.