v0.1.0

UA1 Validator Agent

BenignClawScan verdict for this skill. Analyzed May 1, 2026, 5:47 AM.

Analysis

The skill is a straightforward PDF accessibility validator that uploads the chosen PDF to the disclosed UA1 API, with minor setup and data-sharing points users should notice.

GuidanceBefore installing, make sure you are comfortable sending the PDF files you validate to api.ua1.dev or another configured UA1_API_BASE endpoint, especially if they contain private or regulated information. Also ensure the local shell tools used by the script are installed.

Findings (2)

Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.

Abnormal behavior control

Checks for instructions or behavior that redirect the agent, misuse tools, execute unexpected code, cascade across systems, exploit user trust, or continue outside the intended task.

Agentic Supply Chain Vulnerabilities

SeverityInfoConfidenceHighStatusNote

scripts/validate_pdf.sh

#!/usr/bin/env bash ... curl -sS ... VERDICT="$(jq -r '.verdict // empty' "$TMP_BODY"

The script depends on local command-line tools such as bash, curl, and jq, while the registry requirements declare no required binaries. This is a setup/metadata gap rather than suspicious behavior.

User impactThe skill may fail or behave differently depending on which local tools are installed, despite appearing dependency-free in the metadata.

RecommendationConfirm trusted versions of bash, curl, mktemp, and jq are available, or have the package metadata declare these runtime requirements.

Sensitive data protection

Checks for exposed credentials, poisoned memory or context, unclear communication boundaries, or sensitive data that could leave the user's control.

Insecure Inter-Agent Communication

SeverityLowConfidenceHighStatusNote

scripts/validate_pdf.sh

curl -sS ... -X POST "$URL" ... -F "file=@${FILE_PATH}"

The script sends the selected local file as multipart form data to the configured UA1 API endpoint. This is disclosed and purpose-aligned, but it means PDF contents leave the local environment.

User impactAny sensitive information inside the PDF may be transmitted to the UA1 validation service.

RecommendationOnly use this with PDFs you are allowed to upload, and set UA1_API_BASE to a trusted endpoint if using an internal or self-hosted validator.