ClawHub

Credit Code Cert Ocr

Security checks across malware telemetry and agentic risk

Overview

This OCR skill does what it claims: it reads a user-specified document image and sends it to Scnet's OCR API using an API key.

Install only if you are comfortable sending selected images or PDFs to Scnet's OCR service. Do not paste the API key into chat; store it in config/.env with restrictive permissions. Avoid using sensitive documents unless your organization approves this provider and data handling.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • MCP Least PrivilegeUnderdeclared Capability, Wildcard Permission, Missing Permission Declaration
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Findings (3)

Lp3

Medium
Category
MCP Least Privilege
Confidence
89% confidence
Finding
The skill documentation indicates capabilities to read local files, invoke Python from the shell, and send data over the network, but it does not declare permissions for those actions. That mismatch weakens transparency and review controls, making it easier for a user or orchestrator to trigger file exfiltration to an external OCR service without clear prior consent.

Missing User Warnings

Medium
Confidence
91% confidence
Finding
The documentation shows that user-uploaded files are sent to a third-party OCR endpoint using bearer-token authentication, but it provides no user-facing disclosure, consent guidance, or data-handling warning. Because this skill processes images and certificate documents that can contain sensitive personal or organizational data, silent transmission to an external service creates a real privacy and data-governance risk.

External Transmission

Medium
Category
Data Exfiltration
Content
# Sugon-Scnet OCR API 文档摘要

## 接口地址
`POST https://api.scnet.cn/api/llm/v1/ocr/recognize`

## 请求头
- `Content-Type: multipart/form-data`
Confidence
88% confidence
Finding
https://api.scnet.cn/

VirusTotal

67/67 vendors flagged this skill as clean.

View on VirusTotal