Skill flagged — suspicious patterns detected
ClawHub Security flagged this skill as suspicious. Review the scan results before using.
Pdf Reader
v1.0.0PDF 阅读助手 - PDF 转 Markdown、智能摘要、重点提取
⭐ 0· 40·0 current·0 all-time
MIT-0
Download zip
LicenseMIT-0 · Free to use, modify, and redistribute. No attribution required.
Security Scan
OpenClaw
Suspicious
medium confidencePurpose & Capability
Name, description, SKILL.md and code all target PDF extraction, Markdown conversion, summarization and QA — that is coherent. However the code hardcodes a Windows OneDrive output path (D:/OneDrive/Desktop/公众号文章) which is a specific user directory and is unexpected for a generic PDF helper. The SKILL.md and README also describe different history locations (~/.openclaw/workspace vs the code's history.json in the skill directory), which is inconsistent.
Instruction Scope
SKILL.md requests file read/write and optional network access; the provided code performs local file reads/writes but does not use network. The code will create and write outputs into a hardcoded D: OneDrive path and writes a history.json next to the script. This behavior (creating files in a specific user Desktop OneDrive folder) is outside what a user would normally expect from an unconfigured skill and could lead to accidental data exposure or clutter. Also the code currently uses a simulated sample text (TODO for real parsing), so runtime behavior is not fully implemented as described.
Install Mechanism
No install spec is provided (instruction-only with one code file). This is low risk from an installer perspective because nothing is downloaded or executed at install time. The runtime will write files to disk, however, which is separate from installation risk.
Credentials
The skill requires no credentials or environment variables, which aligns with its stated purpose. However it assumes unfettered filesystem write access and a specific Windows path; that filesystem access is more privileged than minimal read-only processing and should be configurable rather than hardcoded.
Persistence & Privilege
The skill does not request always:true and does not modify other skills. It persists processing history and writes converted files to disk (including creating a directory). Persisting history is reasonable for usability, but the fixed output location and history file location reduce control and may create privacy or overwrite risks.
What to consider before installing
Before installing, consider these points:
- The skill hardcodes an output directory (D:/OneDrive/Desktop/公众号文章) and will create/write files there. If you don't use Windows or don't want files in that location, do not install or edit the code to use a configurable or relative output folder.
- The history.json path in the SKILL.md differs from the code's path (code writes history next to the script). Decide where you want history stored and modify the code accordingly to avoid surprising writes.
- The actual PDF parsing is not implemented (the script currently returns sample text). If you need real parsing, review and add safe parsing libraries (PyMuPDF/pdfplumber) and review any network or cloud APIs you may add.
- Because the skill writes files, review & run the code in a safe environment first (or sandbox) and inspect/modify OUTPUT_DIR and HISTORY_FILE to a directory you control.
- If you plan to use it on sensitive PDFs, inspect code changes and ensure it does not transmit data externally (the current version has no network calls, but future changes could).Like a lobster shell, security has layers — review code before you run it.
latestvk97cwvvw2bd1073k8xzpx87n2x83z6vx
License
MIT-0
Free to use, modify, and redistribute. No attribution required.