PassAudited by ClawScan on May 1, 2026.
Overview
The supplied PDF skill is a coherent instruction-only guide for local PDF processing, with minor user-attention notes around document-changing commands and optional external tools.
This skill appears safe to install as an instruction-only PDF processing guide. Treat PDFs as potentially sensitive: confirm filenames before extracting text or writing outputs, do not decrypt protected documents unless authorized, and install any optional PDF/OCR tools from trusted sources.
Findings (3)
Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.
A user or agent following the guide could modify, split, merge, or decrypt local PDF files, potentially creating unprotected copies of sensitive documents.
The guide documents a command that decrypts a password-protected PDF. This is aligned with PDF manipulation, but it can remove document protection and create a decrypted copy if a user runs it.
qpdf --password=mypassword --decrypt encrypted.pdf decrypted.pdf
Run these commands only on documents you own or are authorized to process, use explicit filenames, and keep backups of originals.
If additional tools or Python packages are installed to follow the examples, their safety depends on the source and versions the user chooses.
The instruction-only skill references optional external packages and tools without an install spec or pinned versions. This is common for a guide-style skill, but dependency provenance is left to the user.
Requires: pip install pytesseract pdf2image
Install dependencies from trusted package repositories or system package managers, prefer pinned versions where possible, and verify any additional referenced files before using them.
Users may not have complete reviewed instructions for advanced or form-filling workflows if those files are added or obtained separately.
The skill refers to additional documentation files that are not present in the supplied manifest. This does not show malicious behavior, but it means those referenced workflows are not visible in the provided artifact set.
For advanced features, JavaScript libraries, and detailed examples, see reference.md. If you need to fill out a PDF form, read forms.md and follow its instructions.
Use only the visible instructions unless the missing referenced files are later supplied and reviewed.