Skillv1.0.0

ClawScan security

Humanize Image · ClawHub's context-aware review of the artifact, metadata, and declared behavior.

Scanner verdict

BenignFeb 23, 2026, 9:16 AM

Verdict: benign
Confidence: high
Model: gpt-5-mini
Summary: The skill's files, instructions, and dependencies are coherent with its stated purpose (removing AI fingerprints from images); it does not request unrelated credentials or install arbitrary remote code, but it is a dual-use tool with legal and policy risks you should consider before use.
Guidance: Technically coherent: the code implements exactly what the skill claims (local metadata removal and image transforms using ImageMagick/ExifTool/Pillow). Before installing or running it, consider these points: - Legal & policy: removing watermarks or metadata to evade detection can violate platform Terms of Service or local laws; the README includes warnings but you remain responsible for compliance. - Dual-use risk: this is a bypass tool — avoid using it for fraud, impersonation, or other unauthorized activities. - Review & sandbox: inspect the included scripts yourself (they are small and readable) and run them in an isolated environment (VM/container) before processing sensitive images. - ImageMagick policy advice: README suggests editing policy.xml in some cases — modifying system policy files can have system-wide effects; prefer non-invasive workarounds. - Data of provenance: the tool strips provenance/metadata (EXIF/C2PA); if you need to retain ownership or audit trails, back up originals first. If you want stronger assurance, ask for a full line-by-line review of scripts/deai.py and deai.sh (I can summarize any specific functions or point out risky system calls), or test processing on non-sensitive sample images and verify outputs with the detectors you care about.

Review Dimensions

Purpose & Capability: okName/description (remove AI fingerprints) match the included scripts and README. Required tools (ImageMagick, ExifTool, Python/Pillow/NumPy) and the implemented pipeline (metadata strip, noise/grain, color/blur/sharpen, resize, JPEG recompress) are appropriate and expected for the declared functionality.
Instruction Scope: noteSKILL.md and the scripts restrict actions to local image processing (file reads/writes, temporary files, running exiftool/magick). There are no network calls or hidden endpoints in the provided code. Note: the instructions explicitly describe bypassing AI detectors — this is coherent with the tool but is an explicit bypass capability with ethical/legal implications.
Install Mechanism: okNo remote download/extract install is included; the skill is instruction/code-only and relies on standard system packages and Python libs and provides a dependency checker and package manager install hints. No suspicious external URLs or shorteners are used in install steps.
Credentials: okThe skill declares no required environment variables, no credentials, and no config paths. The code accesses only local files provided by the user and temporary directories (/tmp). No secret access or unrelated service tokens are requested.
Persistence & Privilege: okThe skill is not always-enabled, does not require persistent system-wide changes, and modifies only its own temporary files and outputs. It does not alter other skills or agent-wide config.