ClawAudit verdict

markdown-to-word-skill

88
๐ŸŸข Trusted
Low risk โ€” reviewed by ClawAudit, behavior matches stated purpose

Installs packages AND executes processes

Markdown to Word (DOCX) conversion skill using python-docx, markdown, and beautifulsoup4; purely local document transformation with no network calls.

Automated static analysis โ€” not a human review. ClawAudit flags capabilities, not confirmed intent, and can produce false positives. Disagree with this verdict? Use Dispute below.

0
security
50
transparency
70
maintenance

What it does

These are capability combinations: each listed behavior occurs in the skill, but ClawAudit detects co-occurrence โ€” it does not verify that one flows into another. Read the code to confirm a live chain.

Capability combination high

Installs packages AND executes processes โ€” opaque dependency chain with execution

LLM03 ยท ASI04

Permission integrity

Installs packages at runtime โ€” transitive dependencies are not auditable

package_install

Findings (4)

Pattern match high

References sudo โ€” requests elevated privileges

SKILL.md ยท code ยท sudo

Pattern match high

apt-get install โ€” installs system packages

SKILL.md ยท code ยท apt-get install

Pattern match high

Uses exec() โ€” may execute shell commands

SKILL.md ยท code ยท exec(

Pattern match high

subprocess execution โ€” runs system commands from Python

SKILL.md ยท code ยท subprocess.run(

Why the tier is capped

Execution sink present in raw bytes (Hard Floor: class B/D). Final tier capped at Caution โ€” cannot be lifted by any downgrade, example-payload opt-in, or allowlist.

Permissions & capabilities

No declared permissions โ€” minimal attack surface.

package_installdata_encodingprocess_exec
Check another skill Browse the registry Auditing your own skills or configs? Use the API