ClawHub

PDF Tools

Security checks across malware telemetry and agentic risk

Overview

This is a straightforward local PDF utility; its main risk is accidental overwriting or changing documents if users choose unsafe output paths.

Install dependencies in a virtual environment, work on copies of important PDFs, use explicit new output filenames, and review outputs carefully, especially when using text replacement because PDF byte-level replacement is unreliable.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Trigger AbuseOverly Broad Trigger, Shadow Command Trigger, Keyword Baiting Trigger
  • MCP Least PrivilegeUnderdeclared Capability, Wildcard Permission, Missing Permission Declaration
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Findings (4)

Lp3

Medium
Category
MCP Least Privilege
Confidence
89% confidence
Finding
The skill clearly documents operations that write new files or modify PDFs, such as edit, merge, split, and rotate, yet no permissions are declared. This creates a mismatch between advertised capabilities and governance controls, increasing the risk of unintended file modification or overwrite in an agent environment.

Vague Triggers

Medium
Confidence
88% confidence
Finding
The README encourages very broad natural-language requests such as 'Extract text from this PDF' and 'Merge these 3 PDF files' without defining what files may be accessed, how consent is established, or when destructive/file-writing actions require confirmation. In an agent setting, ambiguous trigger phrasing can cause the skill to activate on unintended inputs and perform sensitive reads or create/modify files based on loose user context, increasing the chance of overbroad file access or unintended document manipulation.

Missing User Warnings

Medium
Confidence
92% confidence
Finding
The feature list advertises editing, merging, splitting, and rotating PDFs but does not warn that these operations generate new files or alter document outputs, which is risky in an agent-executed workflow. Without explicit notice, users may treat these as informational actions and unintentionally authorize file creation or replacement, leading to accidental data loss, confusion over provenance, or overwriting important documents if defaults are unsafe.

Missing User Warnings

Medium
Confidence
92% confidence
Finding
The documentation encourages editing, splitting, merging, and rotating PDFs but does not warn users that these actions create new artifacts or can alter document contents if used carelessly. In an agent setting, omission of these side-effect warnings can lead to accidental data loss, overwrites, or unintended modification of important documents.

VirusTotal

66/66 vendors flagged this skill as clean.

View on VirusTotal