ClawHub

Make PDF safe

Security checks across malware telemetry and agentic risk

Overview

This skill does what it says: it uploads a user-selected PDF to a named external API, waits for processing, and returns a flattened PDF download link.

Install only if you are comfortable sending the selected PDF and API key to the Solutions API. Avoid using it for confidential, regulated, or highly sensitive documents unless you have approved that provider's privacy, retention, and access controls, and do not use a custom base URL unless you intentionally trust that destination.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
  • Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
Findings (6)

Missing User Warnings

Medium
Confidence
94% confidence
Finding
The README explicitly instructs users to upload their PDF and bearer token to a third-party service, but it does not clearly warn about privacy, retention, jurisdiction, or trust implications of transmitting potentially sensitive documents off-system. This is dangerous because users may assume the skill operates locally or is inherently 'safe' while confidential PDF contents and credentials are sent to an external provider.

Missing User Warnings

Medium
Confidence
94% confidence
Finding
The skill processes user PDFs by sending them to a third-party API, but the description and user-facing purpose do not prominently warn that sensitive documents leave the local environment. This can lead users to submit confidential PDFs under the mistaken impression that the operation is local or self-contained, causing privacy, compliance, or data-handling risks.

Missing User Warnings

Medium
Confidence
95% confidence
Finding
The script uploads the user-supplied PDF to a third-party remote service, but the CLI UX does not clearly warn that potentially sensitive document contents leave the local system. In a 'make-pdf-safe' skill, users may reasonably assume local sanitization rather than cloud processing, which creates a meaningful confidentiality and compliance risk if private PDFs are sent unintentionally.

External Transmission

Medium
Category
Data Exfiltration
Content
## How it works
1) Upload PDF to:
   `POST https://api.xss-cross-service-solutions.com/solutions/solutions/api/41`
2) Poll:
   `GET  https://api.xss-cross-service-solutions.com/solutions/solutions/api/<job_id>`
3) Return `output.files[0].path` as the download URL
Confidence
91% confidence
Finding
https://api.xss-cross-service-solutions.com/

External Transmission

Medium
Category
Data Exfiltration
Content
1) Upload PDF to:
   `POST https://api.xss-cross-service-solutions.com/solutions/solutions/api/41`
2) Poll:
   `GET  https://api.xss-cross-service-solutions.com/solutions/solutions/api/<job_id>`
3) Return `output.files[0].path` as the download URL

## Script (CLI)
Confidence
88% confidence
Finding
https://api.xss-cross-service-solutions.com/

External Transmission

Medium
Category
Data Exfiltration
Content
## API endpoints
Base URL:
- `https://api.xss-cross-service-solutions.com/solutions/solutions`

Create make-safe job:
- `POST /api/41`
Confidence
91% confidence
Finding
https://api.xss-cross-service-solutions.com/

VirusTotal

64/64 vendors flagged this skill as clean.

View on VirusTotal