Back to skill
Skillv1.0.0
ClawScan security
MiniMax PDF · ClawHub's context-aware review of the artifact, metadata, and declared behavior.
Scanner verdict
SuspiciousApr 18, 2026, 3:54 AM
- Verdict
- suspicious
- Confidence
- medium
- Model
- gpt-5-mini
- Summary
- The skill is marketing-style and claims to use Playwright + ReportLab for PDF generation but provides no runtime instructions, dependency declarations, or install steps — that mismatch is suspicious and needs clarification before installing.
- Guidance
- This skill appears to be a description-only wrapper that promises Playwright + ReportLab functionality but doesn't say how or where those tools run. Before installing or enabling it, ask the publisher for: (1) exact runtime requirements (Node/Python versions, npm/pip packages, and any required binaries), (2) an install or invocation recipe (commands, expected input file/paths, and where output PDF is written), (3) provenance/source code or a trusted homepage, and (4) whether the agent will attempt to install software or call external endpoints. If the author cannot provide clear install steps and source, avoid trusting or running it in sensitive environments — an agent might try to install third‑party code or assume access to system tools. Providing an actual install spec or code files would resolve most concerns and increase confidence.
Review Dimensions
- Purpose & Capability
- concernThe description claims Playwright (Node/browser automation) and ReportLab (Python PDF library) as engines, but the skill declares no required binaries, packages, or install steps. A real dual-engine PDF exporter would normally require explicit dependencies and runtime instructions.
- Instruction Scope
- noteSKILL.md is high-level marketing and trigger phrases only; it contains no concrete runtime instructions (what commands to run, what inputs/paths to use, where outputs go). The lack of actionable instructions is not directly dangerous but is underspecified — the agent may make assumptions about environment/tools.
- Install Mechanism
- noteThere is no install spec (lowest install risk). However, the claimed functionality implies the need to install or rely on Playwright and ReportLab; the absence of any install mechanism or source raises questions about where those components run and who provides them.
- Credentials
- okThe skill requests no environment variables, credentials, or config paths, which is proportionate to the provided (minimal) instructions.
- Persistence & Privilege
- okDefaults are used (always:false, agent invocation allowed). Nothing requests permanent presence or elevated privileges.