ClawHub

Expense Invoice Ocr

Security checks across malware telemetry and agentic risk

Overview

This is a straightforward invoice OCR skill that uploads user-selected documents to Scnet for processing, which is sensitive but consistent with its stated purpose.

Install only if you are comfortable sending selected invoice, ticket, tax, or medical documents to Scnet for OCR. Keep SCNET_API_KEY in the local config or environment, do not paste it into chat, restrict config file permissions, and verify the file path before running the skill.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • MCP Least PrivilegeUnderdeclared Capability, Wildcard Permission, Missing Permission Declaration
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Findings (4)

Lp3

Medium
Category
MCP Least Privilege
Confidence
92% confidence
Finding
The skill documentation indicates it reads local files, invokes Python/scripts, and sends data to a remote API, yet it declares no explicit permissions. This creates a transparency and governance gap: users and platforms may not realize the skill can access local files, execute shell/Python commands, and transmit content externally.

Missing User Warnings

Medium
Confidence
95% confidence
Finding
The skill asks for a local file path and is built around a remote OCR API, but it does not clearly warn users that the contents of the local file will be uploaded off-host for third-party processing. In an expense/invoice context, files commonly contain personal, financial, tax, or medical data, so omission of this warning increases privacy and compliance risk.

External Transmission

Medium
Category
Data Exfiltration
Content
SCNET_API_KEY=your_scnet_api_key_here

# API 基础地址(一般无需修改)
SCNET_API_BASE=https://api.scnet.cn/api/llm/v1
```
2. 添加:`SCNET_API_KEY=你的密钥`
3. 设置文件权限为 600(仅所有者可读写)
Confidence
90% confidence
Finding
https://api.scnet.cn/

External Transmission

Medium
Category
Data Exfiltration
Content
| 变量名 | 默认值 | 说明 |
|--------|--------|------|
| SCNET_API_KEY | 必需 | Scnet API 密钥 |
| SCNET_API_BASE | https://api.scnet.cn/api/llm/v1 | API 基础地址(一般无需修改) |

### 输出
Confidence
90% confidence
Finding
https://api.scnet.cn/

VirusTotal

VirusTotal findings are pending for this skill version.

View on VirusTotal