Back to skill
Skillv1.0.0
ClawScan security
NewsletterKit Email Newsletter Builder · ClawHub's context-aware review of the artifact, metadata, and declared behavior.
Scanner verdict
BenignMar 11, 2026, 2:30 AM
- Verdict
- benign
- Confidence
- high
- Model
- gpt-5-mini
- Summary
- The skill's code, instructions, and requirements align with a local newsletter builder: it reads/writes a local JSON file and generates Markdown/HTML/plain text without requesting credentials or external downloads.
- Guidance
- This skill appears coherent and local-only, but review these practical points before installing: 1) It reads/writes a JSON file (default ./newsletter-items.json) in whatever working directory the agent runs from—ensure that location is acceptable and file permissions are appropriate. 2) _loadItems/_saveItems silently swallow errors, so make backups if the data is important. 3) Generated HTML escapes text and restricts links to http/https, which reduces XSS risk, but if you later embed or auto-send the HTML through an ESP, validate any user-provided URLs and content before sending. 4) The package contains no network calls or credential requirements; if a future version requests API keys or adds external downloads, treat that as a new risk. Overall, the package matches its stated purpose.
Review Dimensions
- Purpose & Capability
- okName/description match the included source and SKILL.md. The code implements collecting items, organizing sections, and generating markdown/html/plain text output as advertised. No unrelated capabilities or external services are requested.
- Instruction Scope
- okSKILL.md usage and workflow are scoped to newsletter curation and formatting. Runtime instructions and example usage reference only the bundled module and local data; they do not instruct reading arbitrary system files, environment variables, or sending data externally.
- Install Mechanism
- okNo install spec; this is instruction-plus-source only. There are no downloads or package installs referenced in the manifest or SKILL.md, so nothing writes arbitrary code to disk beyond the provided source file.
- Credentials
- okThe skill requests no environment variables, credentials, or config paths. The code uses only Node's fs module to read/write a single local JSON file (default './newsletter-items.json'), which is proportional to its purpose.
- Persistence & Privilege
- okSkill is not always-enabled and does not request persistent platform privileges. It only persists its own data to a local JSON file; it does not modify other skills or system-wide configs.