ClawHub

CamScanner Remove Image Watermark

Security checks across malware telemetry and agentic risk

Overview

This skill does what it advertises, but its watermark-removal purpose and cloud upload workflow create legal, privacy, and document-integrity risks that need review before use.

Install only if you are comfortable sending images to the CamScanner-hosted endpoint and will use it only on images you own or are authorized to edit. Do not use it on third-party copyrighted images, IDs, contracts, certificates, official records, signatures, seals, or documents where a mark indicates authenticity or provenance.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Trigger AbuseOverly Broad Trigger, Shadow Command Trigger, Keyword Baiting Trigger
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Findings (3)

Vague Triggers

Medium
Confidence
88% confidence
Finding
The trigger text is overly broad because it activates not only on explicit phrases but also whenever a user 'has an image with a watermark that needs to be removed.' That increases the chance the skill is invoked in contexts involving copyright circumvention, document tampering, or fraud without any authorization check.

Natural-Language Policy Violations

High
Confidence
98% confidence
Finding
The skill is expressly designed to remove watermarks and stamped overlays while preserving the underlying content, but it includes no ownership, rights, or lawful-use constraints. In context, this directly enables bypass of attribution, copyright protections, and document integrity markings, making misuse substantially more dangerous than a generic image-editing feature.

External Transmission

Medium
Category
Data Exfiltration
Content
```bash
BASE="https://ai-tools.camscanner.com"

IN_FILE_ID=$(curl -sS -X POST "$BASE/v1/tools/upload_file/execute" \
  -H "Content-Type: application/octet-stream" \
  --data-binary "@/path/to/image.jpg" | jq -r '.tool_result.data.file_id')
```
Confidence
90% confidence
Finding
curl -sS -X POST "$BASE/v1/tools/upload_file/execute" \ -H "Content-Type: application/octet-stream" \ --data-binary

VirusTotal

63/63 vendors flagged this skill as clean.

View on VirusTotal