Skill flagged — suspicious patterns detected
ClawHub Security flagged this skill as suspicious. Review the scan results before using.
Datacomply Shield
v1.1.0AI agent that analyzes documents for cross-border data compliance (GDPR, CCPA, PIPL), identifies risks, and generates bilingual actionable reports within min...
⭐ 0· 46·0 current·0 all-time
MIT-0
Download zip
LicenseMIT-0 · Free to use, modify, and redistribute. No attribution required.
Security Scan
OpenClaw
Suspicious
high confidencePurpose & Capability
The SKILL.md describes a cloud-native pipeline (GMI Cloud APIs, gmi-nlp, gmi-embedding, Pinecone, PostgreSQL, workflow orchestrator) which legitimately requires service endpoints and API keys. However, the skill's metadata declares no required env vars, no primary credential, and no config paths. That mismatch is incoherent: a document-analysis/orchestration agent would normally need credentials for the cloud NLP, embedding service, and vector DB it mentions.
Instruction Scope
The runtime instructions explicitly instruct calls that will upload document bytes and extracted entities to remote services (gmi-nlp.advanced_analyze, gmi_embedding.create, pinecone.upsert/query). Those steps will transmit potentially sensitive personal data off the user's environment. The SKILL.md does not describe where credentials come from, what endpoints are used, or any data residency/retention policy — leaving broad scope to exfiltrate data without the user being informed.
Install Mechanism
This is an instruction-only skill with no install specification and no code files, so it does not install arbitrary binaries or write archives to disk. That lowers installation risk, but does not remove the concerns about external network calls described in the instructions.
Credentials
The SKILL.md expects use of multiple external services (GMI Cloud APIs, Pinecone, embedding services, PostgreSQL) but the skill declares zero required environment variables or credentials. Expected env vars (API keys, endpoint URLs, DB connection strings) are missing from the metadata. That lack of declared credentials is disproportionate and inconsistent with the described functionality, and prevents the user from understanding what secrets they'd need to provide.
Persistence & Privilege
The skill does not request 'always: true' and is not declaring any special system-level persistence or modifications. It is user-invocable and allows model invocation (default), which is standard. There is no evidence it modifies other skills or system configs.
What to consider before installing
This skill describes a cloud-based pipeline that will upload and process documents with external services (GMI Cloud, embeddings, Pinecone, etc.), but it declares no required credentials or endpoints. Before installing or using it with sensitive documents:
- Ask the publisher for a clear list of required environment variables (API keys, endpoints, DB URLs) and why each is needed. The skill should declare these in its metadata.
- Ask where uploaded documents and embeddings are stored, for how long, and which legal jurisdictions/regions the services operate in (data residency). Request a privacy/data handling policy and retention rules.
- Request proof of the service endpoints (official domains) and a security/audit statement (who can access stored documents, audit logs, and deletion procedures). Prefer well-known service hosts over arbitrary endpoints.
- If you must test, do so with non-production/example documents and redact PII. Do not upload real customer data until you obtain the above assurances.
- Prefer skills that explicitly list needed credentials and document how they protect or limit data exfiltration, or ask for source code/auditable implementation if available.
Given the clear mismatch between what the instructions do and what the metadata declares, treat this skill as suspicious until the provider clarifies credentials, endpoints, and data handling.Like a lobster shell, security has layers — review code before you run it.
latestvk97e4kyjr2xd6jy1pe3gbsm9gn83r0zk
License
MIT-0
Free to use, modify, and redistribute. No attribution required.