Skillv0.1.1

ClawScan security

Image Resizer图片大小调整裁剪缩放技能 · ClawHub's context-aware review of the artifact, metadata, and declared behavior.

Scanner verdict

BenignMar 10, 2026, 7:45 AM

Verdict: benign
Confidence: high
Model: gpt-5-mini
Summary: The skill is internally consistent: it claims to resize/compress images and includes a straightforward Node.js script (sharp) that only processes local files; nothing in the package or SKILL.md requests unrelated credentials, network endpoints, or elevated privileges.
Guidance: This skill appears coherent and implements local image resizing/compression using the sharp library. Before installing/running: (1) be aware npm install will fetch/compile native sharp binaries from the network — review and run npm install in a trusted environment; (2) run the script only on files you trust (malformed images can crash native libraries); (3) note minor CLI issues in the code (e.g., flag collisions in the help/usage parsing) — test with sample files and explicit output paths to avoid accidental overwrite; (4) if you need offline or air-gapped use, vendor and audit the sharp binary first. Overall there are no red flags for credential access or hidden exfiltration.

Review Dimensions

Purpose & Capability: okName/description (image resizing and compression) match the shipped files: SKILL.md documents CLI usage and scripts/package.json + resize_image.js implement image processing with the expected dependency (sharp). There are no unrelated env vars, binaries, or config paths requested.
Instruction Scope: okSKILL.md directs the agent/user to run npm install in scripts/ and invoke node resize_image.js with local image files; the runtime instructions only reference local I/O and image-processing options. The script reads and writes local image files and does not call external endpoints or attempt to access unrelated system state.
Install Mechanism: noteThis is instruction-only from the registry perspective (no platform install spec), but SKILL.md tells the user to run npm install in scripts/, and package.json pulls sharp from npm. That is expected for this purpose, but npm install will fetch native binaries/compile code for sharp from the network (npm registry/GitHub for binaries) — this is normal but means third-party native code will be written to disk.
Credentials: okThe skill declares no environment variables, no credentials, and the code does not read env vars or other secrets. The requested surface (file I/O for images) is proportionate to the stated functionality.
Persistence & Privilege: okThe skill does not request always:true, does not modify other skills, and does not ask to persist agent-wide credentials or change agent configuration. Autonomous invocation is allowed by default but is not combined with other privileged behavior here.