Ocr Pro

Security checks across malware telemetry and agentic risk

Overview

This OCR skill is coherent and purpose-aligned, but users should know documents or URLs may be processed by MinerU/OpenDataLab rather than locally.

Install only if you are comfortable using MinerU/OpenDataLab for OCR. Avoid confidential, regulated, internal, or customer documents unless your organization approves that service and its retention/privacy terms. Keep MINERU_TOKEN private and rotate it if exposed.

SkillSpector

By NVIDIA

Vulnerability Patterns

Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep

Findings (1)

Missing User Warnings

Medium

Confidence: 94% confidence
Finding: The skill explicitly supports processing local files and remote URLs through a token-authenticated external OCR API, but it does not clearly disclose that document contents may leave the local environment and be transmitted to a third-party service. This creates a real data-handling and privacy risk, especially for sensitive PDFs, scans, IDs, contracts, or internal documents that users may reasonably assume are processed locally.

VirusTotal

VirusTotal findings are pending for this skill version.

View on VirusTotal