Skillv1.0.0

ClawScan security

Multi Platform Publish · ClawHub's context-aware review of the artifact, metadata, and declared behavior.

SuspiciousApr 14, 2026, 9:44 AM

Verdict: suspicious
Confidence: high
Model: gpt-5-mini
Summary: The skill's written purpose (generate multi-platform cover images and copy) matches its instructions, but the SKILL.md references a local render API and specific template file paths that are not provided — an internal inconsistency that could cause the agent to access local services/files unexpectedly.
Guidance: This skill appears to do what it says (generate platform-specific images and copy), but the instructions assume a local rendering service (http://localhost:3710) and specific template files under skills/auto-contents/references/ that are not bundled. Before installing or using it, verify: (1) Do you actually run a trusted renderer on localhost:3710? If not, the agent may fail or attempt unexpected local network access. (2) The referenced template files are missing from the package — ask the publisher for the template assets or update the instructions to use external, explicit resources. (3) Treat the skill as untrusted until you confirm the source and that any local service it calls is safe; prefer running it only when you explicitly control the local rendering service and templates. If you cannot confirm those, avoid giving this skill runtime access that could let it contact localhost services or read local files.

Purpose & Capability: noteThe name/description (multi-platform content + images/copy) aligns with the instructions for generating platform-specific images and text. However, the instructions reference a 'MakeContents render-text' API and local template file paths (skills/auto-contents/references/...) that are not included in the skill bundle, which is inconsistent with an instruction-only skill that claims no local artifacts.
Instruction Scope: concernSKILL.md directs the agent to POST to a localhost service (http://localhost:3710/api/content/render and a render-text interface) and to use template files under skills/auto-contents/references/*. Those endpoints and file paths are outside the bundled skill and would cause the agent to probe or read local services/files at runtime — behavior not obvious from the skill metadata and potentially unexpected.
Install Mechanism: okNo install spec (instruction-only) — lowest install risk. Nothing is downloaded or written to disk by an installer.
Credentials: okThe skill requests no environment variables, credentials, or config paths. That is proportionate for a content-generation helper. The main concern is that it assumes availability of a local rendering service and local template files despite not declaring them.
Persistence & Privilege: okalways is false and the skill is user-invocable with normal autonomous invocation enabled. No requests to persist or modify other skills or system-wide settings are present.