Skillv1.0.1

ClawScan security

pdftk Server · ClawHub's context-aware review of the artifact, metadata, and declared behavior.

BenignFeb 16, 2026, 5:35 PM

Verdict: benign
Confidence: high
Model: gpt-5-mini
Summary: This is an instruction-only skill that documents and teaches use of the pdftk command-line tool; its requirements and instructions are coherent with that purpose and it does not request extra credentials, installs, or hidden endpoints.
Guidance: This skill is a helpful reference for using the pdftk CLI and appears internally consistent. Before using: (1) Install pdftk from your OS package manager or the vendor site and verify the binary (do not download from untrusted URLs). (2) Avoid putting PDF passwords on the command line — prefer protected inputs or interactive prompts to prevent leakage via process lists/shell history. (3) Be mindful that pdftk operates on local files: ensure you only process files you have permission to handle and that you protect sensitive PDFs. (4) If you plan to redistribute pdftk binaries, review the licensing notes included in the references.

Purpose & Capability: okThe name/description promise PDF manipulation via PDFtk Server and the SKILL.md contains only pdftk usage, examples, and platform package-manager install suggestions — all directly relevant. No unrelated binaries, env vars, or network endpoints are requested.
Instruction Scope: noteInstructions are narrowly scoped to running pdftk on local files (merge, split, encrypt, stamp, etc.). A security note: many examples show passwords provided on the command line (owner_pw, user_pw, input_pw), which can be exposed via process lists or shell history; users should avoid embedding secrets in command-line arguments when handling sensitive PDFs.
Install Mechanism: okNo install spec is embedded in the skill (instruction-only). The included references recommend platform package managers (winget, brew, apt, dnf) and a source archive; these are standard. Verify you install pdftk from official distro/package sources or the vendor site if you need the binary.
Credentials: okThe skill requests no environment variables, secrets, or config paths. The only sensitive items referenced are passwords shown as pdftk command arguments in examples — these are user-supplied at runtime and not declared env requirements.
Persistence & Privilege: okalways is false and the skill is user-invocable; it does not request persistent or elevated platform privileges and does not modify other skills or system-wide agent settings.