ClawHub

ID Card Recognition OCR - 身份证识别

Security checks across malware telemetry and agentic risk

Overview

This skill is a disclosed OCR wrapper that sends user-provided identity document images to JisuAPI, so the main risk is privacy rather than hidden or malicious behavior.

Install only if you are comfortable sending identity document images and extracted personal details to JisuAPI. Use it only for documents you are authorized to process, protect the API key, and redact or avoid sharing full ID numbers, addresses, and portrait data unless necessary.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Trigger AbuseOverly Broad Trigger, Shadow Command Trigger, Keyword Baiting Trigger
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Findings (3)

Vague Triggers

Medium
Confidence
82% confidence
Finding
The trigger description includes broad language like 'or similar document OCR,' which can cause the agent to invoke this skill for loosely related requests without clear user intent. In this skill's context, that matters more because inputs are sensitive identity documents, so accidental invocation can lead to unnecessary processing and third-party transmission of highly sensitive PII.

Missing User Warnings

High
Confidence
97% confidence
Finding
The documentation instructs sending ID card and other credential images to a third-party OCR API but does not prominently warn that full document images and extracted personal data will leave the local environment. Because this skill processes extremely sensitive PII such as name, ID number, address, birth date, and document images, lack of explicit consent and disclosure materially increases privacy, compliance, and data-exposure risk.

Missing User Warnings

High
Confidence
97% confidence
Finding
The skill sends full ID card image data, which contains highly sensitive personal information, to a third-party OCR provider. There is no explicit user consent flow, privacy notice, data handling disclosure, or restriction ensuring the user understands that their document image leaves the local environment, making this a real privacy and data-governance vulnerability.

VirusTotal

66/66 vendors flagged this skill as clean.

View on VirusTotal