Skillv2.0.0

ClawScan security

OmniPublishv2.0 · ClawHub's context-aware review of the artifact, metadata, and declared behavior.

Scanner verdict

BenignApr 15, 2026, 4:48 PM

Verdict: Benign
Confidence: high
Model: gpt-5-mini
Summary: The skill is internally consistent with its stated purpose (a local OmniPublish launcher) and does what it says: it bootstraps a local FastAPI+Vue app, but it will modify files outside the skill folder, install packages, and expose a default admin account — so review before running.
Guidance: This skill is a local app launcher and appears to be what it claims, but it will: 1) create a venv and pip-install packages (downloads from PyPI), 2) run npm install/build (downloads from npm), 3) create files and logs three levels above the skill directory (project root) and run a background server on 127.0.0.1:9527, and 4) ships a default admin/admin123 credential. Before installing: inspect the backend/requirements.txt and the backend/frontend code (or the linked GitHub repo), ensure you are comfortable with files being created outside the skill folder, run behind a firewall (the app binds to localhost by default), change the default admin password after startup, and be aware the brew-only install path is macOS-focused — on Linux/Windows you must ensure python/node/ffmpeg are present manually.

Review Dimensions

Purpose & Capability: okName/description match the requested binaries (python3, node, npm, ffmpeg) and the launcher logic: creating a venv, installing Python deps, building Vue frontend, and starting a local FastAPI service are expected for a local posting workstation.
Instruction Scope: noteSKILL.md instructs the agent to actively start the service (curl to localhost and run launcher.py start). The launch process will create a venv, pip-install dependencies, run npm install/build, start a background process, create config.json/data/logs and write a PID file in the inferred project root (three levels up). These actions are within the app's scope but do modify the filesystem outside the skill directory and start background processes.
Install Mechanism: noteInstall spec uses Homebrew packages (python@3.11, node, ffmpeg), which is reasonable on macOS but not cross-platform; runtime will pip-install dependencies from backend/requirements.txt and npm will fetch packages during frontend build. No downloads from arbitrary URLs are present in the installer.
Credentials: okThe skill declares no required environment variables or credentials. SKILL.md documents an optional LLM api_key in config.json for AI features; that is optional and proportionate. No unrelated credentials are requested.
Persistence & Privilege: notealways:false (normal). The launcher creates persistent artifacts (venv, logs, DB, pid) in the inferred project root and can run a persistent background server. It does not modify other skills or system-wide agent settings, but the filesystem changes are persistent and potentially surprising.