chart-generator Security Report — Low Risk | ClawSafe

10 /100

chart-generator

数据可视化图表生成器（支持 7 种图表类型）

A straightforward chart generation tool using matplotlib with no malicious behavior detected. The skill does exactly what its documentation claims.

Skill Namechart-generator

Duration28.2s

Enginepi

✓

Safe to install

No action required. The skill is safe to use for its documented purpose of generating data visualization charts.

Resource	Declared	Inferred	Status	Evidence
Filesystem	`WRITE`	`WRITE`	✓ Aligned	--output parameter, line 186
Network	`NONE`	`NONE`	—	No network imports or calls found
Shell	`NONE`	`NONE`	—	No subprocess or os.system calls
Environment	`NONE`	`NONE`	—	No os.environ access
Skill Invoke	`NONE`	`NONE`	—	No skill invocation code
Clipboard	`NONE`	`NONE`	—	No clipboard access
Browser	`NONE`	`NONE`	—	No browser automation
Database	`NONE`	`NONE`	—	No database operations

File Tree

2 files · 19.3 KB · 532 lines

Python 1f · 326L Markdown 1f · 206L

├─ 🐍 chart_gen.py Python 326L · 12.5 KB

└─ 📝 SKILL.md Markdown 206L · 6.7 KB

Dependencies 2 items

Package	Version	Source	Known Vulns	Notes
`matplotlib`	`unspecified`	conda/pip	No	Standard visualization library, not analyzed for vulnerabilities
`pillow`	`unspecified`	pip	No	Standard imaging library, not analyzed for vulnerabilities

Security Positives

✓ Uses standard, well-audited matplotlib library for chart generation

✓ No network requests or data exfiltration attempts

✓ No credential or sensitive file access

✓ JSON parsing uses safe json.loads() with no eval() or exec()

✓ File writes limited to user-specified output path (default /tmp/chart.png)

✓ Clean separation of concerns with distinct chart generation functions

✓ No obfuscation, base64 encoding, or anti-analysis techniques

✓ Proper error handling with try-except blocks

Scan Report

File Tree

Dependencies 2 items

Security Positives