Skillv1.0.0

ClawScan security

Change permissions of PDF · ClawHub's context-aware review of the artifact, metadata, and declared behavior.

Scanner verdict

ReviewFeb 11, 2026, 9:28 AM

Verdict: Review
Confidence: medium
Model: gpt-5-mini
Summary: The skill does what it says (uploads a PDF, polls a third‑party Solutions API, and returns a download URL), but there are mismatches and privacy concerns — notably the registry did not declare the required API credential and the skill will send user PDFs to an external service of unclear provenance.
Guidance: This skill appears to be internally consistent — it uploads a PDF to an external Solutions API and returns a download URL — but exercise caution before installing or using it: - Do not upload sensitive or confidential PDFs unless you trust the service and its privacy policy. The skill transmits full document contents to api.xss-cross-service-solutions.com. - The registry metadata did not declare the required API credential (the script expects an API key via --api-key or SOLUTIONS_API_KEY). Confirm where you should obtain the key and that the provider is legitimate before supplying credentials. - Verify the provider domain (login.cross-service-solutions.com / api.xss-cross-service-solutions.com). The owner and homepage are unknown in the registry; look up the service, its privacy/security documentation, and whether it’s reputable. - Test on non-sensitive sample PDFs first and inspect returned URLs to ensure they point to the expected provider and use HTTPS. - If you need to avoid third‑party uploads, consider running a local tool that modifies PDF permissions or use an alternative trusted provider. If you want a firmer verdict, provide evidence that the service domain is trusted (official homepage, privacy policy, or company info) or confirm how API keys are issued; lacking that, treat this skill as potentially risky for sensitive documents.

Review Dimensions

Purpose & Capability: okThe name/description, SKILL.md, README, and the Python script all consistently implement changing PDF permission flags by uploading the file to the Solutions API, polling, and returning a download URL. The required request parameters, endpoints, and outputs align with the stated purpose.
Instruction Scope: concernThe skill requires uploading user PDF files to an external service (api.xss-cross-service-solutions.com). SKILL.md and the script both rely on that network interaction and will transmit entire PDF contents off‑host. There is no explicit privacy notice or warning to users about uploading potentially sensitive documents. The runtime instructions do not instruct the agent to access unrelated local files or credentials, but they do require an API key which must be provided; the registry metadata did not declare this.
Install Mechanism: okNo install spec is provided (instruction-only / script-only), so nothing is automatically downloaded or extracted by the skill registry. The included Python script depends on the well-known 'requests' package (requirements.txt). This is low risk from an install perspective.
Credentials: concernThe SKILL.md and script require an API key (passed via --api-key or SOLUTIONS_API_KEY), but the registry metadata lists no required environment variables or primary credential. That mismatch is notable: the skill cannot function without an external API key, yet the registry didn't declare it. Also the skill will send arbitrary user PDFs to a third‑party service, so requiring/handling that secret and user files is a significant privilege and privacy consideration.
Persistence & Privilege: okThe skill does not request always:true or other elevated persistence. It does not modify other skills or system configuration. The default autonomous invocation model applies (not flagged by itself).