Skillv1.0.3

ClawScan security

General Text Recognition OCR - 通用文字识别 · ClawHub's context-aware review of the artifact, metadata, and declared behavior.

BenignApr 3, 2026, 9:59 AM

Verdict: Benign
Confidence: medium
Model: gpt-5-mini
Summary: The skill is coherent: it implements an OCR client for the JisuAPI service, asks only for the JISU_API_KEY it needs, and its instructions match the code, but there are small operational gaps to be aware of.
Guidance: This skill is internally consistent for performing OCR via JisuAPI, but review these points before installing: (1) It will send image contents to the external service (api.jisuapi.com) — do not use with images you cannot share. (2) You must provide a valid JISU_API_KEY; grant only the minimal privileges on that account. (3) The Python script needs the 'requests' package; ensure the runtime includes it or install it (pip install requests). (4) The script prevents absolute paths and path traversal and only reads files under the agent's working directory, which reduces but does not eliminate data-exposure risk. If you need higher privacy, consider running OCR locally instead of using an external API or review JisuAPI's privacy/retention policy. If you want higher assurance, ask the publisher for a dependency list and a homepage/source repository for review.

Purpose & Capability: noteName and description match the implementation: the script reads a local image or base64 and posts it to JisuAPI's /generalrecognition/recognize endpoint. The only slight mismatch is that the runtime requires the Python 'requests' package (imported in the script) but the registry metadata only lists 'python3' as a required binary and does not declare Python package dependencies.
Instruction Scope: okSKILL.md instructs the agent to read a local image (or accept base64) and POST it to the documented JisuAPI endpoint; those instructions are within the stated OCR purpose. The skill explicitly documents path restrictions and error handling; it sends image data to the external API (expected for an API-backed OCR).
Install Mechanism: noteNo install spec (instruction-only) — lower surface risk. However, the bundled Python script depends on the third-party 'requests' library which is not declared in registry metadata or SKILL.md install steps; runtime failures may occur if the environment lacks that package.
Credentials: okOnly a single credential is requested (JISU_API_KEY) and it is the documented AppKey for the external OCR API. No other environment variables, credentials, or config paths are requested.
Persistence & Privilege: okThe skill is not always-enabled and does not request persistent system privileges or modify other skills. It runs as an on-demand script and does not attempt to persist credentials or alter system configuration.