Back to skill
Skillv1.0.0
ClawScan security
伐谋 - 实验结果渲染 · ClawHub's context-aware review of the artifact, metadata, and declared behavior.
Scanner verdict
BenignMar 13, 2026, 6:14 AM
- Verdict
- benign
- Confidence
- high
- Model
- gpt-5-mini
- Summary
- The skill's requests and instructions are consistent with its stated purpose: it reads user-provided Python solution code (without executing it) and emits a self-contained HTML visualization; it asks for no credentials or installs.
- Guidance
- This skill appears coherent and low-risk: it parses Python solution code you provide (it states it will not execute that code) and writes a self-contained HTML visualization that loads common libraries from CDNs. Before using it, do not include secrets or sensitive credentials inside the Python code you submit (those literal values could be embedded into the generated HTML). If you prefer no external requests when opening the page, host the JS/fonts locally or replace CDN links. Finally, review the generated HTML before sharing it publicly to ensure no unintended data was included.
Review Dimensions
- Purpose & Capability
- okName/description (FaMou solution visualization) match the instructions: the skill only needs to read a Python solution and problem description and produce an HTML visual. No unrelated credentials, binaries, or installs are requested.
- Instruction Scope
- noteSKILL.md directs the agent to read user-supplied Python code and extract literal data (coordinates, schedules, etc.) and to generate a HTML file. It explicitly says not to execute Python code, and it does not instruct reading other system files or environment variables. Note: the skill is prescriptive about triggering on certain user phrases, which is a functional design choice but not a security concern by itself.
- Install Mechanism
- okInstruction-only skill with no install spec and no code files — minimal disk footprint and no downloads. The generated HTML relies on public CDNs at runtime (React, Tailwind, Google Fonts, Babel), which is a functional dependency but not an installer risk.
- Credentials
- okNo environment variables, credentials, or config paths are requested. The only external network activity implied is the HTML page loading CDN assets when opened — not the skill itself contacting external APIs.
- Persistence & Privilege
- okalways is false and the skill does not request persistent system-wide changes. It writes an output file (famou_viz_result.html) per its purpose, which is proportionate. Autonomous invocation is allowed by platform default but not escalated by this skill.