Skill Detail

Web Scraper

This skill scrapes data from web pages, including tables, lists, and prices, and can handle pagination and export data in CSV or JSON format.

GitHub:sickn33/antigravity-awesome-skills web-scraper
version d5b94c4efe58
static analysis only
no human review yet
Use Caution

Current public label

Use Caution

Because the skill references secrets and interacts with external network endpoints, it is labeled with caution. This means you should carefully review the skill's configuration and usage.

This label is currently coming from the automated scorecard.

Automated result

Use Caution

Driftloom found that the skill's documentation mentions credentials or secrets and makes outbound HTTP calls. It also found broken references and that the skill is mostly documentation.

1 medium, 7 low Final label: use caution.

Human review

No human review has been recorded yet.

The current public label is still relying on automation. A human has not weighed in yet.

What happened

Driftloom completed a static scan. It inspected the skill files, recorded findings, and generated a scorecard.

Runtime evidence

No sandbox runtime result has been recorded yet.

Driftloom currently recommends runtime testing for this version (priority 35).

What did not happen

  • Driftloom did not run this skill in an isolated sandbox yet.
  • This label is not a guarantee that the skill is safe, bug-free, or appropriate for every environment.
  • A good score does not replace human judgment when a skill touches secrets, shell access, or external systems.

Source provenance

Source: Workspace import

Originally ingested from a local workspace copy.

Scorecard

Safety
94
Quality
64
Transparency
85
Operational
92
Maintenance
76

1 medium, 7 low Final label: use caution.

Severity mix: 1 medium, 7 low

What Driftloom checked

  • Read the skill files and metadata to understand what the skill claims to do.
  • Looked for shell commands and risky command patterns, even if none stood out strongly.
  • Looked for external URLs, network calls, and signs the skill reaches outside the machine.
  • Looked for secret, token, password, and credential references.
  • Checked for broken internal references and missing files.

Findings

Programmatic network client usage detected
network.client_code · transparency
Medium

The source appears to make outbound HTTP calls in code.

File: references/data-transforms.md
Evidence: urllib.
Broken relative reference detected
reference.missing_relative_path · quality
Low

The source references `URL`, but that path does not exist.

File: references/output-templates.md
Evidence: **Source:** [Page Title](URL)
Broken relative reference detected
reference.missing_relative_path · quality
Low

The source references `URL`, but that path does not exist.

File: references/output-templates.md
Evidence: **Source:** [Page Title](URL)
Broken relative reference detected
reference.missing_relative_path · quality
Low

The source references `URL`, but that path does not exist.

File: references/output-templates.md
Evidence: **Source:** [Site Name](URL)
Broken relative reference detected
reference.missing_relative_path · quality
Low

The source references `URL`, but that path does not exist.

File: references/output-templates.md
Evidence: **Source:** [Site Name](URL)
Broken relative reference detected
reference.missing_relative_path · quality
Low

The source references `URL`, but that path does not exist.

File: references/output-templates.md
Evidence: **Source:** [Site Name](URL)
Documentation-only skill structure
structure.docs_only · quality
Low

The source looks almost entirely documentation-based, with no obvious code or config files to inspect. That does not make it bad, but it limits how much automation can meaningfully verify.

File: SKILL.md
Secret or credential reference detected
secret.reference · safety
Low

The docs mention credentials or secrets. That may be normal, but it still tells you the skill expects sensitive material somewhere in the workflow.

File: references/output-templates.md
Evidence: password
Driftloom is following the boring, correct architecture: Django control plane first, isolated runner later. Miraculously, restraint survives.