ClawHub
Back to skill
v1.0.2

web-replication

BenignClawScan verdict for this skill. Analyzed May 1, 2026, 8:38 AM.

Analysis

This instruction-only skill is coherently aimed at copying the look of public websites and includes permission checks, but users should set clear crawl limits and use only trusted browser tooling.

GuidanceUse this only for websites you own or have explicit permission to replicate. Before running it, define the allowed domain, page limits, and rate limits, avoid login-only or personal data, and review the generated replica before sharing or publishing it.

Findings (2)

Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.

Abnormal behavior control

Checks for instructions or behavior that redirect the agent, misuse tools, execute unexpected code, cascade across systems, exploit user trust, or continue outside the intended task.

Tool Misuse and Exploitation
SeverityLowConfidenceHighStatusNote
SKILL.md
Recursively explore every public page of the target website... save that page’s screenshots, component interaction records, and related asset files

This authorizes broad browser-driven crawling and capture of a website’s public presentation; it is central to the skill’s purpose and bounded by public-only and authorization language, but users should scope it carefully.

User impactIf used too broadly, the agent may crawl many pages and copy visual assets or text that the user may not have rights to reuse.
RecommendationConfirm authorization, restrict the target domain and crawl depth, respect robots.txt and rate limits, and review copied content before publishing or reusing it.
Agentic Supply Chain Vulnerabilities
SeverityInfoConfidenceHighStatusNote
SKILL.md
This workflow depends on either Playwright MCP or the agent-browser skill. As long as at least one of them is installed and available, the workflow can run normally.

The skill relies on external browser automation tooling that is not included in the artifact set or install spec; this is expected for the workflow but means the user must trust those separate tools.

User impactThe safety and behavior of the replication workflow partly depend on whichever browser automation tool is installed in the user’s environment.
RecommendationInstall Playwright MCP or agent-browser only from trusted sources and review their permissions separately.