Back to skill
Skillv1.0.0
ClawScan security
mac-node-snapshot · ClawHub's context-aware review of the artifact, metadata, and declared behavior.
Scanner verdict
BenignFeb 11, 2026, 9:21 AM
- Verdict
- benign
- Confidence
- high
- Model
- gpt-5-mini
- Summary
- The skill's instructions and requirements are coherent with its stated purpose (capture macOS screen via OpenClaw + ffmpeg); it is instruction-only and does not request unrelated credentials or persistent privileges, but the metadata omits required binaries (openclaw CLI and ffmpeg) which the SKILL.md expects.
- Guidance
- This instruction-only skill appears coherent and limited to taking a short screen recording and extracting a frame. Before installing or using it: 1) confirm you have the OpenClaw CLI available and ffmpeg installed (the SKILL.md requires both even though the registry metadata omitted them); 2) verify you trust the skill source — provenance is unknown and there is no homepage; 3) be aware this will attempt to capture your screen when invoked, and macOS Screen Recording permission is required (the skill cannot bypass this); 4) if you enable autonomous invocation for agents, they could run the capture when triggered by the listed phrases — only enable that if you trust the agent's prompts. If you want stronger assurance, ask the publisher to update metadata to declare required binaries and provide a homepage or source repository.
Review Dimensions
- Purpose & Capability
- noteThe SKILL.md explicitly uses the OpenClaw CLI (openclaw nodes screen record) and ffmpeg to produce a PNG from a short recording, which matches the name/description. However, the registry metadata lists no required binaries while the instructions clearly require the OpenClaw CLI and ffmpeg — a metadata omission that should be corrected before trusting automatic installs or runs.
- Instruction Scope
- okInstructions are narrow and concrete: create a tmp folder under the skill, run openclaw nodes screen record, convert with ffmpeg, and read the output file to attach. They do not ask the agent to read unrelated files, environment variables, or transmit data to third-party endpoints. The SKILL.md also explicitly notes that Screen Recording permission cannot be bypassed.
- Install Mechanism
- okThere is no install spec (instruction-only), so nothing is written to disk by an installer. This is lower risk than arbitrary downloads. The only runtime dependencies are external binaries (openclaw CLI and ffmpeg) which the skill expects to be present or be installed with user consent.
- Credentials
- okThe skill does not request environment variables, credentials, or config paths. That is proportionate for a screen-capture helper. No unexplained secret access is requested.
- Persistence & Privilege
- okThe skill does not request 'always: true' and is not claiming elevated persistent privileges. Agent autonomous invocation is allowed by default (disable-model-invocation: false), which is normal; nothing in the skill attempts to modify other skills or system-wide settings.