food label audit食品标签合规检查与案例PLUS
v2.0.0食品标签合规审查与风险查询;当用户上传标签图片/PDF进行合规审查或查询标签违规案例、处罚依据时使用
⭐ 1· 61·0 current·0 all-time
byTinker@cloudyxuq
MIT-0
Download zip
LicenseMIT-0 · Free to use, modify, and redistribute. No attribution required.
Security Scan
OpenClaw
Benign
high confidencePurpose & Capability
Name/description (food label compliance and case lookup) align with the instructions and included reference material. Declared dependency on Jinja2 is reasonable for HTML report generation. The skill's use of OCR and a multimodal model for text extraction and visual checks is coherent with the auditing purpose.
Instruction Scope
SKILL.md limits actions to: saving uploaded images/PDFs to ./tmp/, invoking OCR/multimodal models to extract text and inspect visuals, running the 58-point checklist, and rendering reports (Markdown/HTML). It does not instruct reading other system files or requesting unrelated credentials. Two important operational notes in the instructions: (1) image/PDF data will be processed by model providers (data leaves the agent to third-party servers), and (2) the Jinja2 HTML template will render extracted text—there is no explicit guidance in SKILL.md to sanitize or enable auto-escaping, which could lead to HTML/script injection (XSS) if untrusted text is embedded in the report.
Install Mechanism
This is an instruction-only skill (no install spec, no code files) which is low-risk from an install perspective. One minor gap: the header declares a Python dependency (jinja2>=3.0.0) but provides no install instruction; the platform/agent must ensure Jinja2 is available. No external downloads or obscure installers are used.
Credentials
The skill requests no environment variables or credentials, which is appropriate. However, runtime behavior depends on OCR/multimodal models whose providers may require credentials or which may process data on remote servers; the SKILL.md acknowledges this. Users should be aware that uploaded images/text may be transmitted to model providers and subject to their privacy/retention policies.
Persistence & Privilege
Skill is not always-on, user-invocable, does not request elevated privileges, and does not modify other skills or system-wide settings. Temporary files are written to a local ./tmp/ directory and SKILL.md recommends cleaning them after use.
Assessment
This skill appears internally coherent for label compliance auditing, but consider the following before installing/using it: 1) Data privacy: uploaded images/PDFs and extracted text are intended to be processed by OCR/multimodal model providers — verify which provider will handle the data and review their privacy/retention terms before sending potentially sensitive or proprietary label images. 2) Dependency availability: SKILL.md names jinja2 but has no install step — ensure the runtime environment provides Jinja2 (or install it) to avoid runtime failures. 3) HTML report safety: the included Jinja2 template renders extracted text into HTML; ensure the rendering uses proper escaping or sanitization (or disable any embedded scripting) before serving reports to other users, to prevent XSS or injection from untrusted OCR output. 4) Temporary files: follow the recommended cleanup of ./tmp/ after processing to avoid accumulating potentially sensitive files. If you need higher privacy, run OCR and model inference on an on-prem or vetted provider and add explicit sanitization steps when generating HTML.Like a lobster shell, security has layers — review code before you run it.
latestvk9797swz9d0db74yf67czpy0t584ry9k
License
MIT-0
Free to use, modify, and redistribute. No attribution required.