Skillv1.0.0

ClawScan security

Pdf Anthropic · ClawHub's context-aware review of the artifact, metadata, and declared behavior.

Scanner verdict

BenignMar 14, 2026, 3:39 PM

Verdict: benign
Confidence: high
Model: gpt-5-mini
Summary: The skill's code, instructions, and requirements are consistent with a PDF-processing/form-filling utility and do not request unrelated credentials or hidden network access.
Guidance: This skill appears coherent and focused on PDFs, but note a few practical points before installing/using it: (1) There is no automated installer — you must have the Python packages and native tools the scripts use (pypdf, pdfplumber, pdf2image, pillow, poppler utilities, qpdf/pdftk, ImageMagick) installed on the host. (2) The code monkeypatches a pypdf DictionaryObject method to handle certain option formats — this is a compatibility change that could break with different pypdf versions; test on non-sensitive PDFs first. (3) The LICENSE file is restrictive (Anthropic proprietary terms); confirm you have rights to use/copy the code as packaged. (4) Run these scripts locally in a controlled environment and review their behavior on sample PDFs before processing sensitive documents. If you need an automated install, request/confirm an install spec that explicitly installs and pins the required dependencies rather than relying on manual setup.

Review Dimensions

Purpose & Capability: okThe name/description (PDF processing, extraction, merging, form-filling) aligns with the included Python scripts (pypdf, pdfplumber, pdf2image, PIL, etc.) and the SKILL.md examples. There are no environment variables, external credentials, or unrelated binaries requested that would be inconsistent with the stated purpose.
Instruction Scope: okSKILL.md and FORMS.md only instruct reading/writing and analyzing PDF files, running the included scripts, and using common CLI tools (pdftotext, qpdf, ImageMagick) for PDF tasks. The instructions do not direct collection or exfiltration of unrelated system data or access to secrets. They do instruct executing scripts in the skill directory and working with user-provided PDF files (expected for this purpose).
Install Mechanism: noteThere is no install spec (instruction-only), but the package includes multiple Python scripts that depend on external libraries and native tools (pypdf, pdfplumber, pdf2image, pillow, poppler, ImageMagick, qpdf, pdftk). Because no install step is provided, an operator must ensure these dependencies are present before running scripts; this is not malicious but is an operational gap that could cause failures if overlooked.
Credentials: okThe skill declares no required environment variables, credentials, or config paths. The scripts only access local files (PDFs, JSON field descriptions) and do not read environment secrets or system configuration, so requested access is proportional to the purpose.
Persistence & Privilege: okalways is false and the skill does not request elevated or permanent system presence. It does not attempt to modify other skills or system-wide agent settings.