Course Study
Security checks across static analysis, malware telemetry, and agentic risk
Overview
This instruction-only study skill looks coherent and benign, with the main things to notice being that it processes course PDFs, may use web search, and writes generated study files.
This skill is reasonable for generating course study materials. Before installing, be aware that it may process uploaded PDFs, use web search for syllabus or topic expansion, and save extracted notes and final study files in the selected folder. Use a dedicated folder and avoid confidential course materials if you do not want them included in tool processing or web-search-derived workflows.
Static analysis
No static analysis findings were reported for this release.
VirusTotal
VirusTotal findings are pending for this skill version.
Risk analysis
Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.
Uploaded course PDFs will be processed through the PDF tool as part of the workflow.
The skill directs the agent to process uploaded PDFs through a PDF tool. This is central to the study-note purpose and is explicitly scoped away from arbitrary file reading.
**Always use the `/pdf` skill to read PDF files.** Do not use Python, bash, or any direct file I/O.
Use it with course files you are comfortable processing through the PDF workflow, and review the extracted notes for accuracy.
Course titles, topics, or concept names may be sent to web-search tooling when web expansion is available.
The skill may use external web search/fetch tools to expand concepts and compare curriculum coverage. This is disclosed and purpose-aligned, but course names or topics may be included in queries.
**Mode A — Web-enabled (WebSearch + WebFetch available)** Run the full three-layer search strategy below.
Avoid using web expansion for confidential or unpublished course details unless you are comfortable with those queries; use the no-web curriculum-grounded mode if privacy matters.
Extracted course material and generated study notes may remain in the output folder after the session.
The workflow creates intermediate and final Markdown files that may contain extracted course content. This persistence is expected for study-note generation, but users should be aware the content is saved.
Phase 1: Extract ... Output: lecture-XX-extract.md ... Phase 4: Study Materials ... study-notes.md
Choose a dedicated output folder and delete generated files if the course materials are sensitive.