Skillv1.0.5

VirusTotal security

MinerU PDF Extractor · External malware reputation and Code Insight signals for this exact artifact hash.

BenignMay 1, 2026, 4:13 AM

Hash: 89f8912dade1a446a4424809761c1b74cd177564e495bcc41f30135c7a7eda04
Source: palm
Verdict: benign
Code Insight: Type: OpenClaw Skill Name: mineru-pdf-extractor Version: 1.0.5 The skill bundle is classified as benign. It demonstrates strong security practices, including explicit input sanitization (`validate_filename`, `validate_dirname`, `escape_json`), URL validation (whitelisting `cdn-mineru.openxlab.org.cn` for downloads in `scripts/local_file_step4_download.sh` and `scripts/online_file_step2_poll_result.sh`), and ZIP file integrity checks (`unzip -t`). The documentation (`SKILL.md`, `docs/*.md`) clearly outlines these security measures and their purpose, indicating a deliberate effort to prevent common vulnerabilities like directory traversal and injection attacks. No evidence of data exfiltration, malicious execution, persistence mechanisms, or prompt injection attempts against the AI agent was found.
External report: View on VirusTotal