ClawHub

PDF.co

Security checks across malware telemetry and agentic risk

Overview

This skill is a coherent PDF.co connector, but users should be aware that some document-generation actions may spend credits or send content to PDF.co without being marked as write actions.

Install this only if you intend to let an agent use your OOMOL-connected PDF.co account. Before running conversions, compression, splitting, URL capture, or merging, confirm the exact files, URLs, HTML, and expected cost/credit use, because some output-creating operations are described as safe untagged actions rather than requiring explicit confirmation.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Trigger AbuseOverly Broad Trigger, Shadow Command Trigger, Keyword Baiting Trigger
  • MCP Tool PoisoningHidden Instructions, Unicode Deception, Parameter Description Injection
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Findings (2)

Intent-Code Divergence

Medium
Confidence
95% confidence
Finding
The safety section says untagged actions are reads, but several untagged actions in this skill generate or transform documents and can incur cost, create new files, or transmit user-supplied content to an external service. That misclassification can cause an agent to execute materially state-changing or billable operations without confirmation, weakening user-consent and safety boundaries.

Vague Triggers

Medium
Confidence
88% confidence
Finding
The description instructs agents to use this skill for ANY PDF.co request and instead of calling the API directly, which is an overly broad trigger condition. Broad routing increases the chance the skill is invoked in marginal or unintended contexts, including operations that should receive more careful tool selection, review, or user confirmation.

VirusTotal

64/64 vendors flagged this skill as clean.

View on VirusTotal