Web Artifacts Builder
Security checks across static analysis, malware telemetry, and agentic risk
Overview
This looks like a normal guide for building Claude HTML artifacts, but you should review the referenced local scripts and dependency installs before running them.
This skill appears safe to install as an instruction-only web-artifact builder. If you use it, verify the referenced scripts before running them, expect local project files and dependencies to be created, and use a separate working folder.
Static analysis
No static analysis findings were reported for this release.
VirusTotal
VirusTotal findings are pending for this skill version.
Risk analysis
Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.
Running the referenced scripts may create files and install packages in your project environment.
The skill's workflow relies on local helper scripts and dependency installation, while the provided artifact set contains only SKILL.md. This is expected for a web build helper, but the script contents and exact dependency behavior are not visible in the supplied artifacts.
Run the initialization script to create a new React project: ```bash bash scripts/init-artifact.sh <project-name> ... bash scripts/bundle-artifact.sh ```
Before using the skill, inspect any referenced scripts available in your environment and run them only inside a dedicated project directory.