mineru precision extract PDF、Document、Images

Security checks across malware telemetry and agentic risk

Overview

This skill is a coherent MinerU document-extraction helper, with normal cautions around API tokens, remote processing, and URL crawling.

Before installing, confirm you trust MinerU/OpenDataLab and the mineru-open-api package. Do not process confidential documents, private URLs, or internal web pages unless that service is approved for the data. Keep the MinerU token out of logs, screenshots, shared scripts, and source control, and review wildcard or batch commands because they can include more files or URLs than intended.

SkillSpector

By NVIDIA

Vulnerability Patterns

Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep

Findings (2)

Missing User Warnings

Medium

Confidence: 93% confidence
Finding: The skill explicitly encourages `extract` from remote URLs and `crawl` of web pages, but never warns that document contents and fetched URLs are sent to a third-party API service. In a document-processing context, users may submit sensitive PDFs, internal URLs, or private web content without realizing the privacy and data-transmission implications.

Missing User Warnings

Medium

Confidence: 89% confidence
Finding: The authentication section tells users to set `MINERU_TOKEN` and use config-based auth, but omits basic credential-handling cautions such as avoiding shell history exposure, accidental logging, or committing config files. Because this skill is meant for CLI and agent use, tokens may be copied into scripts or terminals where they can be leaked more easily.

VirusTotal

63/63 vendors flagged this skill as clean.

View on VirusTotal