ClawHub

Laiye ADP Global Document Intelligent Extraction · Fast

Security checks across malware telemetry and agentic risk

Overview

The skill appears to be a legitimate invoice-extraction integration, but users should review it carefully because it under-explains sensitive document uploads, credential storage, and remote installer risk.

Install only if you trust the publisher and the ADP/Laiye cloud service with the invoices you plan to process. Avoid the pipe-to-shell installer unless you can verify the installer source first, and do not upload confidential or regulated invoices without organizational approval. Store the API key in a protected local secret store or environment variable where possible and rotate it if it may have been exposed.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Findings (5)

Context-Inappropriate Capability

Medium
Confidence
98% confidence
Finding
The skill instructs users to install the CLI by piping a remotely fetched shell or PowerShell script directly into an interpreter. This creates a supply-chain and arbitrary code execution risk because any compromise of the source repository, network path, or script content would execute immediately on the user's machine with the user's privileges.

Missing User Warnings

Medium
Confidence
87% confidence
Finding
The README encourages sending local files and remote document URLs to a public cloud parsing service, but it does not clearly warn users that invoice data may contain sensitive financial, personal, or regulated information. In this skill context, the omission is more dangerous because the product is explicitly marketed for financial automation and cross-border invoice processing, increasing the likelihood that users will upload confidential business documents without understanding data-handling implications.

Missing User Warnings

Medium
Confidence
92% confidence
Finding
The README encourages uploading local files and remote URLs to a public cloud document-processing service but does not clearly warn that invoice documents may contain sensitive financial, personal, or regulated data that will be transmitted off-host. In the context of an agent skill for automated document handling, this omission can lead users or agents to send confidential data externally without informed consent or policy checks.

Missing User Warnings

Medium
Confidence
90% confidence
Finding
The workflow tells users to submit invoice files, local paths, URLs, and base64 document contents to the ADP extraction service, but it does not clearly warn that potentially sensitive financial documents and extracted data leave the local environment. This can cause inadvertent disclosure of confidential invoices, tax IDs, addresses, and line-item data to a third-party processor.

Missing User Warnings

Low
Confidence
86% confidence
Finding
The authentication instructions advise `adp config set --api-key <your-api-key>` without warning that this stores a sensitive credential locally, potentially in plaintext or in a user-accessible config location. On shared systems or poorly secured endpoints, this can lead to credential theft and unauthorized API usage.

VirusTotal

64/64 vendors flagged this skill as clean.

View on VirusTotal