humanizer-de Security Report — Trusted | ClawSafe

5 /100

humanizer-de

Deutscher KI-Text-Detektor – 5-Pass-Analyse, 24 Muster, 168 Vokabeln, 5 statistische Signale, Personality Injection

Humanizer-DE is a legitimate German AI-text detector and humanizer with no malicious behavior — it performs offline text analysis using only fs/path, declares no network access, and contains no credential theft, exfiltration, or obfuscation.

Skill Namehumanizer-de

Duration28.0s

Enginepi

✓

Safe to install

Approve for deployment. The skill operates entirely offline and poses no security risk.

Resource	Declared	Inferred	Status	Evidence
Filesystem	`READ`	`READ`	✓ Aligned	SKILL.md declares offline-only; JS script uses fs.readFileSync/writeFileSync for…
Network	`NONE`	`NONE`	—	SKILL.md rule 5: 'Kein Netzwerk'; JS script has zero require('http')/fetch/axios…
Shell	`NONE`	`NONE`	—	No subprocess, exec, or child_process in humanize-de.js
Environment	`NONE`	`NONE`	—	No process.env access in any script
Skill Invoke	`READ`	`READ`	✓ Aligned	SKILL.md describes 6 LLM-based commands; _meta.json declares skill_invoke
Clipboard	`NONE`	`NONE`	—	No clipboard access found
Browser	`NONE`	`NONE`	—	No browser/DOM APIs used
Database	`NONE`	`NONE`	—	No database access

3 findings

🔗

Medium External URL 外部 URL

https://tikitackr.github.io/OpenClaw-Dashboard/

README.md:140

🔗

Medium External URL 外部 URL

https://tikitackr.github.io/Cowan/

README.md:141

🔗

Medium External URL 外部 URL

https://clawhub.ai/Tikitackr/humanizer-de

_meta.json:28

File Tree

12 files · 133.7 KB · 3447 lines

Markdown 10f · 2458L JavaScript 1f · 960L JSON 1f · 29L

├─ ▾ 📁 _dev

│ └─ 📝 SESSION-LOG.md Markdown 215L · 8.6 KB

├─ ▾ 📁 references

│ ├─ ▾ 📁 stil-layer

│ │ ├─ 📝 basis.md Markdown 110L · 4.9 KB

│ │ └─ 📝 lesch.md Markdown 175L · 7.4 KB

│ ├─ 📝 examples.md Markdown 279L · 14.2 KB

│ ├─ 📝 ki-muster.md Markdown 446L · 16.1 KB

│ ├─ 📝 personality-injection.md Markdown 259L · 10.0 KB

│ ├─ 📝 statistische-signale.md Markdown 316L · 10.1 KB

│ └─ 📝 vokabeln.md Markdown 278L · 16.3 KB

├─ ▾ 📁 scripts

│ └─ 📜 humanize-de.js JavaScript 960L · 29.4 KB

├─ 📋 _meta.json JSON 29L · 893 B

├─ 📝 README.md Markdown 147L · 6.0 KB

└─ 📝 SKILL.md Markdown 233L · 9.7 KB

Dependencies 1 items

Package	Version	Source	Known Vulns	Notes
`node (fs, path builtins only)`	`>=18`	stdlib	No	Zero npm dependencies; only fs and path from Node.js stdlib

Security Positives

✓ No network access — skill explicitly declares 'Kein Netzwerk' and JS script contains zero HTTP/client libraries

✓ No shell execution — humanize-de.js uses only fs and path from Node.js stdlib

✓ No credential access — no process.env, ~/.ssh, .env, or sensitive path access anywhere

✓ No obfuscation — all code is plain JavaScript with readable variable names and comments

✓ No data exfiltration — results are printed to stdout or written to local files only

✓ Open source — all code is readable, no compiled or packed payloads

✓ No external dependencies — JS script uses only Node.js built-ins (fs, path)

✓ Clear documentation — SKILL.md accurately describes all 6 commands and 5-pass workflow

✓ Session-Log confirms no code was copied from external operator-humanizer ZIP

✓ _meta.json explicitly declares requires.network: false

Scan Report

File Tree

Dependencies 1 items

Security Positives