ClawHub

PDF Info

Security checks across malware telemetry and agentic risk

Overview

This is a straightforward PDF metadata API wrapper, but users should only send PDFs or PDF URLs they are comfortable sharing with pdfapihub.com.

Install this only if you trust pdfapihub.com with the PDFs, PDF URLs, and metadata you submit. Avoid confidential, regulated, internal, or signed-access document URLs unless third-party processing is approved, and protect the API key like any other credential.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
  • MCP Tool PoisoningHidden Instructions, Unicode Deception, Parameter Description Injection
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Findings (4)

Description-Behavior Mismatch

Medium
Confidence
90% confidence
Finding
The example performs PDF inspection by sending a document URL to a third-party API, which expands the trust boundary beyond a local pre-flight check. If users supply private or internal document URLs, this can disclose sensitive document locations and cause external fetching of data that the skill description does not clearly warn about.

Context-Inappropriate Capability

Medium
Confidence
87% confidence
Finding
For a stated purpose of metadata and pre-flight checks, transmitting document URLs to an external API is a potentially unnecessary data exposure. This may leak confidential file locations, internal endpoints, or access patterns, and could trigger server-side retrieval of resources the user did not intend to share externally.

Missing User Warnings

Medium
Confidence
97% confidence
Finding
The skill explicitly instructs users to send either a PDF URL or the full base64-encoded PDF to a third-party API, but it does not warn that document contents, metadata, or internal URLs may be transmitted off-platform. This creates a real privacy and data-handling risk because users may submit sensitive documents without informed consent or understanding of external processing.

Missing User Warnings

Medium
Confidence
95% confidence
Finding
The manifest explicitly sends either a PDF URL, raw base64 PDF content, or an uploaded file to a third-party API endpoint, but it does not disclose that document contents and related metadata leave the local environment. PDFs often contain sensitive business or personal information, so silent transmission to an external service creates a real confidentiality and compliance risk. The pre-flight/checking context does not remove the risk; it may even increase it because users may assume metadata inspection is a local, low-sensitivity operation.

VirusTotal

66/66 vendors flagged this skill as clean.

View on VirusTotal