ClawHub
Back to skill

Security audit

Moark Doc Extraction

Security checks across malware telemetry and agentic risk

Overview

This skill is a straightforward document extraction helper, but users should know selected documents are sent to Gitee AI for processing.

Install only if you are comfortable sending selected documents and any embedded images to Gitee AI. Do not process confidential, regulated, proprietary, or third-party documents unless that provider is approved for your use case. Prefer local file paths, avoid internal or untrusted URLs, and use a dedicated API key where possible.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
  • MCP Tool PoisoningHidden Instructions, Unicode Deception, Parameter Description Injection
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Findings (3)

Description-Behavior Mismatch

Medium
Confidence
96% confidence
Finding
The skill’s description implies document text extraction, but the implementation sends full document contents to a third-party cloud API for processing. This creates a confidentiality and data-governance risk because users may assume local processing and unknowingly upload sensitive PDFs or DOCX files externally.

Context-Inappropriate Capability

Medium
Confidence
93% confidence
Finding
The script accepts arbitrary HTTP/HTTPS URLs and fetches them server-side, which expands its behavior from document parsing into network retrieval. In agent or automated environments, this can be abused for SSRF-style access to internal resources, retrieval of unexpected content, or processing attacker-controlled files without adequate validation.

Missing User Warnings

Medium
Confidence
96% confidence
Finding
The workflow instructs users to process arbitrary PDF/DOCX documents through an external GITEE AI API, but it provides no explicit warning that document contents will be transmitted to a third party. Because documents often contain sensitive personal, financial, legal, or proprietary data, this omission can cause inadvertent data disclosure and privacy/compliance violations.

VirusTotal

63/63 vendors flagged this skill as clean.

View on VirusTotal