Skillv2.0.5

ClawScan security

web-pptx-generator · ClawHub's context-aware review of the artifact, metadata, and declared behavior.

Scanner verdict

BenignApr 29, 2026, 1:14 AM

Verdict: benign
Confidence: high
Model: gpt-5-mini
Summary: Files and runtime instructions match the stated purpose: a Node-based, local HTML single-file slide generator with theme/layout scripts and optional local previewing — there are no unexplained credential requests or external endpoints.
Guidance: This skill appears to do exactly what it says: generate single-file HTML slide decks using local Node scripts and bundled theme files. Before installing or running it, note: (1) you need Node.js available on PATH; (2) preview rendering uses a local headless Chrome binary by default (CHROME_BIN can override the path) — ensure a compatible Chrome is installed if you want PNG previews; (3) the SKILL.md mentions an optional preview npm package but the included scripts primarily call Chrome — this is a documentation/implementation mismatch but not malicious; (4) the scripts read and write files in the current working directory (e.g., dist/), so run them in a directory you control; (5) there are no network endpoints or credential requests in the code, so sensitive environment variables are not at risk of being exfiltrated by this skill. If you plan to allow autonomous agent invocation, it's safe from the perspective of overbroad permissions, but as always restrict the working directory and review any content files the agent may instruct the skill to load.

Review Dimensions

Purpose & Capability: okName/description (HTML single-file slide generator) align with the repository contents: Node scripts for scaffolding, validating, generating single-file HTML slides and theme files. Declared requirement (node) matches the code. No unrelated cloud credentials, binaries, or config paths are requested.
Instruction Scope: noteSKILL.md directs the agent to use the included scripts and local reference docs; the instructions do not request arbitrary system secrets or network exfiltration. Minor inconsistency: SKILL.md recommends installing an external preview package (@aspect-ratio/preview-renderer) for previewing, but the included preview utilities (chrome-utils, render scripts) use a local headless Chrome binary (CHROME_BIN / default path). This is an implementation/documentation mismatch but not a security problem by itself.
Install Mechanism: okNo install spec is provided (instruction-only), and all code is bundled in the skill. That reduces supply-chain risk compared to remote downloads. Scripts rely on locally available Node and optionally a local Chrome binary; nothing is fetched from arbitrary URLs at install time.
Credentials: okNo required environment variables or credentials are declared. The only env read in code is CHROME_BIN (optional override for the headless Chrome path), which is proportionate to preview rendering. No secrets, tokens, or external service keys are requested.
Persistence & Privilege: okSkill is not always-enabled (always: false) and does not request elevated or persistent platform privileges. It writes output into local working directories (dist/...), which is expected for a generator. It does not modify other skills or global config.