Skillv0.1.0

ClawScan security

Huo15 Comic Script · ClawHub's context-aware review of the artifact, metadata, and declared behavior.

Scanner verdict

SuspiciousApr 24, 2026, 4:24 AM

Verdict: suspicious
Confidence: medium
Model: gpt-5-mini
Summary: The skill claims only to generate a structured comic script, but bundled code includes clients that call external media APIs (Volcengine/Ark, Anthropic, Kling, Suno) and expect API keys that are not declared in the skill metadata—a mismatch that warrants caution.
Guidance: This skill will produce script.json as advertised, but the bundled code includes clients for external media services (Volcengine/Ark, Kling, Suno) and an Anthropic fallback. Those clients require API keys (e.g., ARK_API_KEY, ANTHROPIC_API_KEY) that are not declared in the skill metadata. If you only use the agent to write JSON (the recommended mode in SKILL.md), the shared network clients may not be invoked. If you run the included Python CLI, be aware it may attempt network calls, will write .checkpoint.json and .cost.json in the project/output directory, and may raise errors if API keys are missing. Before installing or running: (1) review the code you plan to execute, (2) avoid providing unrelated credentials, (3) run CLI commands in an isolated environment if you plan to allow network access, and (4) add only the specific API keys you trust and need (principle of least privilege). If you want a simple script-only skill with no external calls, prefer using the agent-mode (direct JSON output) and avoid running the CLI fallback.

Review Dimensions

Purpose & Capability: concernThe skill's name/description promise structured script.json output. The code supports that, but also bundles a shared library (ark_api.py, config) that wraps external media-generation APIs (Volcengine 'Ark', Kling, Suno) and pricing/cost logic. Those media capabilities could be reasonable for a full pipeline, but the skill metadata declares no required environment variables or credentials even though the code expects ARK_API_KEY (and the CLI fallback uses the Anthropic SDK which typically requires ANTHROPIC_API_KEY). This is an incoherence between declared purpose/requirements and included capabilities.
Instruction Scope: noteSKILL.md instructs producing script.json (agent mode can directly write JSON). The included CLI fallback (scripts/script_gen.py) uses the Anthropic SDK to generate JSON when run, and validation/writing of files occurs. The SKILL.md does not instruct calling Ark/Kling/Suno endpoints, and the script_gen entrypoint does not invoke ark_api.py. Still, the repository includes code that can call external services and persist checkpoints/cost files; a user running the CLI or other components can trigger network calls and file writes not described in the high-level README.
Install Mechanism: okNo install spec or remote downloads are present — this is an instruction-plus-code bundle with no installer. That minimizes install-time risk (nothing is fetched or executed automatically during install).
Credentials: concernSkill metadata lists no required environment variables, but the code enforces/uses credentials: ArkClient raises if ARK_API_KEY is missing; script_gen's Anthropic-based fallback requires the Anthropic SDK and likely ANTHROPIC_API_KEY. The shared config also references third-party endpoints (klingai, sunoapi). These credential requirements are not declared in the skill metadata and are broader than the simple 'script generator' description suggests.
Persistence & Privilege: okThe skill does not request elevated privileges or always:true. The code writes project-local files (.checkpoint.json and .cost.json) and output script.json into the user-specified output directory; this is expected for a generation pipeline and does not modify system-wide or other-skill configuration.