ClawHub

Clinical Data Extractor

Security checks across malware telemetry and agentic risk

Overview

This clinical PDF extractor appears useful and mostly purpose-aligned, but it asks agents to use an edit-capable PDF tool and leaves sensitive clinical file handling under-scoped.

Review before installing. Use it only with documents you are allowed to process, prefer local/read-only PDF extraction, avoid untrusted file paths or URLs, and confirm where Markdown outputs will be written.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • MCP Tool PoisoningHidden Instructions, Unicode Deception, Parameter Description Injection
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Findings (2)

Intent-Code Divergence

Medium
Confidence
89% confidence
Finding
The skill documents PDF processing as read-only, but then recommends `nano-pdf --action edit` with a natural-language instruction. Using an edit-capable mode on untrusted PDFs increases the risk of unintended file modification, side effects, or broader tool behavior than the user expects, especially because the instruction is free-form and not constrained to extraction only.

Missing User Warnings

Medium
Confidence
87% confidence
Finding
The README explicitly instructs users to provide URLs or PDFs and states that the skill will extract data and generate Markdown files, but it does not clearly disclose that this implies outbound network access and local file creation. In an agent-skill context, missing disclosure about external fetching and filesystem writes can lead users to authorize actions with privacy, compliance, or data-handling consequences they did not expect, especially when processing clinical or proprietary documents.

VirusTotal

66/66 vendors flagged this skill as clean.

View on VirusTotal