ClawHub

Pdf Watermark Chinese

Security checks across malware telemetry and agentic risk

Overview

This is a local PDF watermarking skill, but it advertises watermark removal even though the code only copies the PDF unchanged.

Install only if you need local PDF watermark addition and will verify outputs yourself. Do not rely on this skill to remove, sanitize, anonymize, or declassify PDFs; it currently copies files unchanged for removal, so sensitive marks may remain.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Trigger AbuseOverly Broad Trigger, Shadow Command Trigger, Keyword Baiting Trigger
  • MCP Tool PoisoningHidden Instructions, Unicode Deception, Parameter Description Injection
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Findings (4)

Intent-Code Divergence

High
Confidence
98% confidence
Finding
The method and docstring claim watermark removal, but the implementation only copies the input PDF unchanged. This is dangerous because users may rely on it to sanitize or declassify documents, then share files that still contain visible or forensic watermarks and sensitive attribution data.

Description-Behavior Mismatch

High
Confidence
99% confidence
Finding
The skill metadata and behavior imply watermark-removal support, but the code does not remove watermarks at all. In a document-processing skill, this mismatch can directly cause confidentiality and compliance failures because users may believe identifying marks were stripped before redistribution.

Vague Triggers

Medium
Confidence
88% confidence
Finding
The watermark-removal trigger phrases are very broad and can activate on generic requests like 'remove this PDF's watermark' without verifying authorization, ownership, or user intent. In this skill's context, removal changes document contents and could facilitate misuse such as stripping ownership, confidentiality, or provenance markings from documents.

Missing User Warnings

Medium
Confidence
91% confidence
Finding
The skill advertises watermark removal without warning that the action alters document contents and may affect authenticity, traceability, or legal compliance. In a document-processing skill, omitting this warning increases the chance of unsafe or unauthorized use because users are not prompted to consider consequences before destructive modification.

VirusTotal

66/66 vendors flagged this skill as clean.

View on VirusTotal