ClawHub
Skill flagged — suspicious patterns detected

ClawHub Security flagged this skill as suspicious. Review the scan results before using.

Photoshop Automator

v1.2.4

Automate Adobe Photoshop on Windows via ExtendScript to run scripts, update text layers, create layers, apply filters, play actions, and export images.

0· 1.1k·2 current·3 all-time
by@abdul-karim-mia
MIT-0
Download zip
LicenseMIT-0 · Free to use, modify, and redistribute. No attribution required.
Security Scan
VirusTotalVirusTotal
Suspicious
View report →
OpenClawOpenClaw
Benign
medium confidence
Purpose & Capability
Name/description match the implementation: the package executes ExtendScript (JSX) in Photoshop via cscript (Windows) or osascript (macOS), and provides helpers (updateText, createLayer, applyFilter, playAction, export). The handlers and SKILL.md align with this purpose.
Instruction Scope
runScript deliberately executes arbitrary ExtendScript supplied as input. SKILL.md warns that ExtendScript has direct filesystem access and that generated scripts must be reviewed. That is expected for a Photoshop automation skill, but it is a powerful capability: untrusted JSX can create/modify/delete local files (and ExtendScript may be able to use socket/IO features). The skill does not attempt to read unrelated system files or contact external endpoints itself.
Install Mechanism
No install/download behavior is present (instruction-only with packaged handler code). There are no external URL downloads or archive extracts. The code writes temporary files (JSX/VBS) and executes local commands, which is expected for this functionality.
!
Credentials
No credentials or env vars are requested (appropriate). However the declared required binaries list (cscript, osascript) is inconsistent with OS targeting: the package metadata claims both binaries must exist but the code chooses cscript on Windows and osascript on macOS. Requiring both on every install is disproportionate and will be incorrect on typical systems. The skill also writes to the system temp directory and can write to arbitrary output paths supplied to export or JSX—this is expected but should be used with care.
Persistence & Privilege
The skill does not request always:true, does not persist credentials, and does not modify other skills or system-wide settings. It executes only when invoked and cleans up temporary files (best-effort).
Assessment
This skill legitimately runs user-provided ExtendScript in Photoshop and therefore can read and write local files — that is the intended functionality but also a real risk. Only install/use it if you trust the skill and the scripts you run. Before enabling or allowing autonomous use: 1) Verify the skill source (registry lists 'unknown' homepage; package files reference a GitHub repo—confirm the upstream repo and author). 2) Do not run unreviewed JSX; inspect any generated or supplied scripts. 3) Consider restricting agent autonomous invocation for this skill (disable autonomous runs) so scripts only run with your explicit approval. 4) Be aware export paths and temporary files may overwrite or leave artifacts; run initially in a safe/test environment (or VM) and limit file paths and permissions where possible. 5) Notify maintainers to fix metadata that requires both cscript and osascript unconditionally, since that is incorrect for typical single-OS hosts.

Like a lobster shell, security has layers — review code before you run it.

latestvk97fdvabz5h5t9frnq8xhqmwm5815fjf

License

MIT-0
Free to use, modify, and redistribute. No attribution required.
Termshttps://spdx.org/licenses/MIT-0.html

Runtime requirements

Binscscript, osascript

Comments