ClawHub

free-ocr-zc

Security checks across malware telemetry and agentic risk

Overview

This is a straightforward OpenRouter-based OCR skill, but users should understand that images are sent to a remote service and that it reads an OpenRouter API key from a documented local secrets path.

Install only if you are comfortable sending selected images, prompts, and image URLs to OpenRouter or the configured API endpoint. Avoid confidential documents, IDs, screenshots, internal URLs, or regulated data unless that third-party processing is acceptable, and prefer using a scoped OpenRouter API key you control.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Findings (5)

Context-Inappropriate Capability

Medium
Confidence
94% confidence
Finding
The script reads an API key from a hard-coded secrets file under a specific Administrator profile before falling back to an environment variable. This creates unnecessary credential access behavior for a simple OCR tool, couples execution to a privileged local path, and can normalize unauthorized use of locally stored secrets if the script is reused in other contexts.

Missing User Warnings

Medium
Confidence
96% confidence
Finding
The documentation describes sending images to OpenRouter but does not clearly warn users that both local image files and remote image URLs are transmitted to a third-party external API for processing. This can lead users to unknowingly upload sensitive documents, screenshots, IDs, or internal images to an external service, creating privacy, confidentiality, and compliance risks.

Missing User Warnings

Medium
Confidence
95% confidence
Finding
The script sends user-provided images and prompts to a third-party remote API endpoint without any explicit warning, consent flow, or privacy notice. If users supply sensitive local images or confidential prompts, this can cause unintended external disclosure of data.

Missing User Warnings

Medium
Confidence
95% confidence
Finding
The script sends either a user-supplied image URL or the full base64-encoded contents of a local image to a third-party API endpoint without any explicit disclosure, confirmation, or data handling warning. This is dangerous because users may pass sensitive local documents or screenshots assuming processing is local, causing unintended external transmission of potentially confidential data.

Missing User Warnings

Medium
Confidence
91% confidence
Finding
The script sends either a remote image URL or the full base64-encoded contents of a local image to an external OCR API without any explicit warning, confirmation, or privacy notice. For OCR workflows, images often contain sensitive documents, IDs, or secrets, so silent transmission to a third party creates a real confidentiality risk.

VirusTotal

62/62 vendors flagged this skill as clean.

View on VirusTotal