Draft Cli
PassAudited by ClawScan on May 17, 2026.
Overview
This skill appears coherent for managing Draft through its CLI, with disclosed abilities to start a local Draft daemon, use Draft auth, and modify or share Draft content when explicitly requested.
Install this if you intend to use the Draft CLI. Be explicit about any write, publish, or share action; review targets and generated URLs before exposing content; keep Draft auth/API keys private; and stop the local Draft daemon after use if you do not want it running.
Findings (5)
Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.
If you explicitly ask for a write, publish, or Secret Share action, the agent may change or expose Draft content.
The skill can mutate or share Draft content, but the artifact explicitly scopes these actions to user-directed requests.
Draft write and share operations are intentional capabilities of this skill. They are denied by default unless the user explicitly requests both the exact action and the target.
Before approving write/share actions, verify the exact Draft page, file, or target and review any public or shareable URL.
Installing the skill depends on the npm package that provides the draft command.
The executable is supplied by an external npm package rather than code included in the skill; this is expected for a CLI wrapper but means users trust that package.
node | package: @innosage/draft-cli | creates binaries: draft
Install only from the intended package source and keep the CLI updated.
Draft API keys or auth state may grant access to Draft-related actions if exposed or misused.
The skill may interact with local Draft authentication/API key state, which is sensitive but directly related to Draft Secret Share functionality.
`draft auth ...` configures or inspects local Secret Share API key state.
Use Draft auth commands only for the intended Draft account and avoid sharing or printing secrets unless you specifically intend to.
A local Draft server process may run in the background while using live Draft page commands.
The skill may start a local Draft background daemon for live page commands; this is disclosed and tied to the stated workflow.
If status reports `DAEMON_OFFLINE`, choose the right startup lane: ... `draft start-server` ... Verify: Run `draft status --json` again and only proceed once the state is `READY`.
If you do not want the daemon running after use, stop it with the Draft CLI when finished.
Selected Secret Share or Markdown content may be uploaded to or fetched from Draft’s hosted service.
The skill uses hosted Draft API flows for Secret Share content; the artifact discloses the data path and states encryption/decryption occurs locally.
`draft secret open ...` is a hosted read path that fetches an encrypted Secret Share record and decrypts locally. ... `draft secret create ...` is a hosted write path that encrypts Markdown locally before upload.
Review the selected content before creating shares and treat resulting Secret Share URLs as sensitive.