Ad Creative Engine
Security checks across static analysis, malware telemetry, and agentic risk
Overview
This appears to be a local video-ad rendering skill, with the main caveat that its referenced scripts and dependency files are not included in the provided artifact set.
This skill looks benign for its stated purpose of generating local video ads. Before installing, make sure you have a complete trusted copy of the package, including requirements.txt and scripts/render.py, because those files are referenced but not included in the provided artifacts.
Static analysis
No static analysis findings were reported for this release.
VirusTotal
VirusTotal findings are pending for this skill version.
Risk analysis
Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.
A user would need to obtain and trust additional files before these commands can work.
The skill asks the user to install dependencies and run a script, but the supplied artifact manifest contains only SKILL.md, so the referenced requirements file and render script are not part of the reviewed artifacts.
pip3 install -r requirements.txt python3 scripts/render.py --config examples/config_example.json
Only run the install and render commands from a complete, trusted package, and review the referenced requirements and script before execution.
Running the command would execute local Python code from the skill package.
The skill includes a local Python execution step. This is expected for a local video-rendering tool, but users should notice that it involves running local code.
python3 scripts/render.py --config examples/config_example.json
Run it only after confirming the script source is trusted and that the config points to intended media and output paths.