ClawHub

Receipt Expense Sorter

Security checks across malware telemetry and agentic risk

Overview

This skill appears to be a local receipt and expense organizer with disclosed file input/output and no evidence of credential use, networking, persistence, or external-system changes.

This appears safe for local receipt organization. Before installing or running it, verify the publisher/source, provide only the receipt files or text you intend to process, redact sensitive details where possible, and review any generated Markdown before saving or sharing it.

VirusTotal

VirusTotal findings are pending for this skill version.

View on VirusTotal

Risk analysis

Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.

#
ASI02: Tool Misuse and Exploitation
Low
What this means

If invoked with the wrong path, the helper could process unintended local content or overwrite an output file chosen by the user or agent.

Why it was flagged

The skill allows running a local Python helper that reads a user-specified input and may write a user-specified output. This is expected for organizing receipts, but users should choose paths deliberately.

Skill content
python3 "{baseDir}/scripts/run.py" --input <输入文件> --output <输出文件>
Recommendation

Run it only on intended receipt/expense files and choose a safe output path; use dry-run or stdout when unsure.

#
ASI06: Memory and Context Poisoning
Low
What this means

Sensitive financial or personal information from receipts may appear in the generated report if included in the input.

Why it was flagged

The script carries user-provided input lines into the generated Markdown report. This is purpose-aligned, but saved or shared reports may preserve sensitive receipt details or untrusted text.

Skill content
bullets = [line.strip("- ").strip() for line in input_text.splitlines() if line.strip()] ... out.append(f"- {item}")
Recommendation

Redact unnecessary personal or financial details before processing, and review the generated report before saving or sharing it.

#
ASI04: Agentic Supply Chain Vulnerabilities
Info
What this means

It may be harder to independently verify the original publisher or source history of the skill.

Why it was flagged

The provenance metadata is limited and the homepage is a placeholder-style URL. No remote installer, hidden dependency, or download behavior is shown, so this is a trust note rather than a behavioral concern.

Skill content
Source: unknown; Homepage: https://example.invalid/skills/receipt-expense-sorter
Recommendation

Install only from a trusted registry or owner, and review the bundled files before use.