ClawHub

Bank Check Ocr

Security checks across malware telemetry and agentic risk

Overview

This bank-check OCR skill appears purpose-built for its stated task, but it uploads sensitive financial documents to a third-party API without clear user-facing consent or data-handling disclosure.

Install only if you are comfortable sending bank-check images, including account numbers, names, amounts, signatures, and seals, to Scnet's remote OCR API. Before using it, verify Scnet's privacy and retention terms, use only files you are authorized to process, keep the API key out of chat, and prefer explicit confirmation before each upload.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Trigger AbuseOverly Broad Trigger, Shadow Command Trigger, Keyword Baiting Trigger
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Findings (4)

Vague Triggers

Medium
Confidence
82% confidence
Finding
The activation guidance says the AI may auto-trigger the skill based on broad descriptive keywords, without clear scope boundaries or confirmation requirements. This can cause the skill to run on unintended requests and send local files to the OCR provider when the user did not explicitly authorize that action.

Missing User Warnings

Medium
Confidence
95% confidence
Finding
The skill handles user-supplied local image paths for bank checks, which can contain highly sensitive financial information, yet the description does not clearly warn that the file contents will be transmitted to an external OCR API. This undermines informed consent and materially increases privacy and compliance risk because users may assume processing is local.

Missing User Warnings

Medium
Confidence
93% confidence
Finding
The documentation describes uploading highly sensitive financial document images and receiving OCR-extracted personal data, but provides no warning about privacy, retention, consent, or third-party handling. In a bank check OCR skill, this is especially sensitive because checks may contain account details, signatures, names, seals, and other regulated financial information that users may not expect to transmit to an external provider.

External Transmission

Medium
Category
Data Exfiltration
Content
# Sugon-Scnet OCR API 文档摘要

## 接口地址
`POST https://api.scnet.cn/api/llm/v1/ocr/recognize`

## 请求头
- `Content-Type: multipart/form-data`
Confidence
90% confidence
Finding
https://api.scnet.cn/

VirusTotal

VirusTotal findings are pending for this skill version.

View on VirusTotal