Skillv1.0.0

ClawScan security

Watermark Remover · ClawHub's context-aware review of the artifact, metadata, and declared behavior.

BenignMar 8, 2026, 7:53 AM

Verdict: benign
Confidence: medium
Model: gpt-5-mini
Summary: The skill's files and runtime instructions are consistent with its stated purpose (detecting and removing PDF watermarks); it requests no external credentials or unusual privileges, but the source is unknown so exercise caution (review code and run in a sandbox/after backups).
Guidance: This package appears to do what it says and does not request secrets or network access, but the source/homepage is unknown. Before installing or running: (1) review the included scripts yourself or in a sandboxed environment, (2) back up original PDFs (the tool writes new files and could overwrite if names collide), (3) confirm the tool prompts and you explicitly allow any pip installs, (4) be aware of legal/ethical concerns — removing watermarks may violate copyright or terms of service. If you want higher assurance, run the scripts in an isolated VM or container and inspect the code line-by-line (the code here is small and readable).

Purpose & Capability: okName, description, SKILL.md and included scripts (check_env.py, detect_watermark.py, remove_watermark.py) align: all scripts operate on the provided PDF path and implement detection and removal logic. No unrelated binaries, cloud credentials, or config paths are requested.
Instruction Scope: okSKILL.md limits actions to local environment checks, optional pip installs (with explicit user confirmation), watermark detection, user confirmation, removal, and verification. Scripts only read/write files referenced by the user and output previews/results. The instructions explicitly require user consent before installations or modifying files.
Install Mechanism: okNo install spec is present (instruction-only skill). The scripts may call pip (via provided install commands shown by check_env.py) if the user consents; there are no downloads from remote URLs or archive extraction steps in the skill metadata.
Credentials: okThe skill requires no environment variables, credentials, or config paths. The only environment information surfaced by the scripts is Python executable/version and library presence (used to decide whether to prompt for installs), which is proportional to the task.
Persistence & Privilege: okalways is false and the skill does not request persistent system presence or modify other skills/configurations. It writes output files to the same directory (or as specified) which is expected behavior for file-processing tools.