DocStream
Security checks across static analysis, malware telemetry, and agentic risk
Overview
DocStream appears to be a coherent document-processing API skill, but users should know it sends document-processing requests to an external service and handles a DocStream API key or signup email.
This skill is reasonable for document extraction, summarization, conversion, and PDF parsing through DocStream. Before installing or using it, verify that you trust the DocStream/Voss endpoint, avoid sending highly sensitive documents unless you accept the provider's data handling terms, and keep any generated API key private.
Static analysis
No static analysis findings were reported for this release.
VirusTotal
VirusTotal findings are pending for this skill version.
Risk analysis
Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.
Private or sensitive document data could be shared with the DocStream service if the user asks the skill to process it.
The helper sends user-provided document-processing JSON to an external API endpoint. This is aligned with the skill's document-processing purpose, but document URLs or content may leave the user's environment.
API_BASE="${DOCSTREAM_API_URL:-https://anton.vosscg.com}" ... process) curl -sf -X POST "$API_BASE/v1/documents/process" ... -d "$1"Only use this skill for documents you are comfortable sending to DocStream, and verify the provider's privacy and retention terms before processing sensitive files.
A DocStream API key could be visible in command output or captured logs if auto-signup is used.
The helper uses a DocStream API key or signup email and prints a newly created API key to stderr. This credential handling is expected for the API integration, but the key should not be exposed in shared logs or transcripts.
API_KEY="${DOCSTREAM_API_KEY:-}" ... EMAIL="${DOCSTREAM_EMAIL:-}" ... echo "✅ Free key: $API_KEY" >&2Treat generated API keys as secrets, avoid sharing command output that contains them, and prefer storing keys in a private environment variable.