v1.0.0

poocr vatinvoice2excel

BenignClawScan verdict for this skill. Analyzed May 1, 2026, 7:24 AM.

Analysis

This skill is purpose-aligned for invoice OCR, but users should know it requires Tencent Cloud API keys, may send invoice data to a cloud OCR provider, and installs an unpinned Python package.

GuidanceBefore installing or using this skill, confirm that sending invoice files to Tencent Cloud is allowed for your organization, use a limited Tencent Cloud API key, avoid hardcoding real keys in scripts, install `poocr` from a trusted source with a pinned version if possible, and batch-process only a narrowly scoped folder of intended invoices.

Findings (4)

Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.

Abnormal behavior control

Checks for instructions or behavior that redirect the agent, misuse tools, execute unexpected code, cascade across systems, exploit user trust, or continue outside the intended task.

Tool Misuse and Exploitation

SeverityLowConfidenceHighStatusNote

SKILL.md

批量处理时，程序会自动遍历文件夹中的所有发票文件

The skill supports automatic folder traversal for batch invoice processing. This is purpose-aligned, but the scope depends on the folder path the user provides.

User impactIf a broad folder is selected, more invoice files than intended could be processed and exported.

RecommendationUse a dedicated input folder containing only the invoices intended for OCR, and review the generated Excel output before sharing it.

Agentic Supply Chain Vulnerabilities

SeverityLowConfidenceHighStatusNote

SKILL.md

pip install poocr

The installation step depends on a third-party Python package without a pinned version in the artifact. Package installation is central to the stated OCR purpose, but provenance and version control are not specified.

User impactFuture package changes or installing from an unexpected package source could affect behavior.

RecommendationInstall from a trusted Python package index, consider pinning a known-good version, and review the package before using it with sensitive invoices.

Permission boundary

Checks whether tool use, credentials, dependencies, identity, account access, or inter-agent boundaries are broader than the stated purpose.

Identity and Privilege Abuse

SeverityLowConfidenceHighStatusNote

SKILL.md

需要获取腾讯云 API 的 SecretId 和 SecretKey

The skill requires Tencent Cloud API credentials to perform OCR. This is expected for the service integration, but credentials should be handled carefully and the registry metadata does not declare a primary credential.

User impactUsing the skill may consume Tencent Cloud quota and exposes whatever permissions are attached to the provided API key.

RecommendationUse a dedicated, least-privilege Tencent Cloud key, avoid hardcoding real secrets in copied examples, and rotate the key if it is accidentally shared.

Sensitive data protection

Checks for exposed credentials, poisoned memory or context, unclear communication boundaries, or sensitive data that could leave the user's control.

Insecure Inter-Agent Communication

SeverityMediumConfidenceHighStatusNote

SKILL.md

这个技能使用 poocr 库（基于腾讯云 AI）实现增值税发票的 OCR 识别

The artifact discloses that invoice OCR depends on Tencent Cloud AI, so invoice images or PDFs may be processed by an external cloud provider.

User impactInvoice files can contain tax IDs, amounts, company names, and other sensitive financial information that may leave the local environment for OCR processing.

RecommendationOnly process invoices you are authorized to upload to Tencent Cloud, and review Tencent Cloud’s data handling, retention, and compliance terms before bulk use.