Cad To Data
PassAudited by VirusTotal on May 12, 2026.
Overview
Type: OpenClaw Skill Name: cad-to-data Version: 2.0.0 The skill is classified as suspicious due to a significant prompt injection vulnerability identified in `instructions.md`. This file explicitly instructs the AI agent to invoke 'Format-specific CLI converters via subprocess.run()'. While the Python code in `SKILL.md` currently uses simulated data and does not implement `subprocess.run()`, this instruction gives the agent a powerful primitive for arbitrary command execution. If the agent constructs these commands using unsanitized user input (e.g., file paths), it creates a high risk of shell injection. Additionally, the `claw.json` declares 'filesystem' permission, which, combined with the `export_to_json` function in `SKILL.md` performing file writes, expands the potential attack surface for arbitrary file operations.
Findings (0)
Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.
Using the skill may cause the agent to run local converter commands to process CAD/BIM files.
The skill discloses that conversion may involve running local command-line tools. This is expected for CAD/BIM conversion, but local command execution should remain limited to trusted converters and user-selected files.
Format-specific CLI converters invoked via subprocess.run()
Use trusted converter tools, review commands before running them when possible, and only process files from trusted locations.
The skill may depend on tools already installed on the user's machine, and the exact tools are not specified in the metadata.
The runtime instructions reference external CLI converters, but the registry metadata does not declare which binaries or packages are expected. This is a dependency clarity gap, not evidence of malicious behavior.
Required binaries (all must exist): none; No install spec — this is an instruction-only skill.
Confirm which converter will be used for each CAD/BIM format before processing files, and avoid installing or running unknown converters.