ClawHub

Alibabacloud Docmind Parse

Security checks across malware telemetry and agentic risk

Overview

This document parser is mostly purpose-aligned, but it can send sensitive documents to Alibaba Cloud automatically and its default direct API path appears to use unencrypted HTTP.

Review before installing if you may process confidential documents. Use only with files you are comfortable sending to Alibaba Cloud, prefer an explicit HTTPS DOCMIND_V2_ENDPOINT, and verify which Alibaba Cloud credentials and billing account the default credential chain will use.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Trigger AbuseOverly Broad Trigger, Shadow Command Trigger, Keyword Baiting Trigger
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Findings (3)

Vague Triggers

Medium
Confidence
82% confidence
Finding
The trigger phrase "parse file" is overly generic and can cause the skill to activate in many unrelated contexts where a user merely mentions file parsing. Over-broad activation increases the chance of unintended execution and accidental transmission of sensitive local files or remote URLs to external services.

Missing User Warnings

Medium
Confidence
96% confidence
Finding
The description omits a clear warning that document contents, file URLs, and a session-correlating User-Agent identifier are sent to external Alibaba Cloud services. In a document-processing skill, this omission is significant because users may unknowingly submit sensitive documents, and the observability section confirms cross-request correlation via SKILL_SESSION_ID.

Missing User Warnings

Medium
Confidence
90% confidence
Finding
The tool uploads either document URLs or local document contents (base64/file upload) to Alibaba Cloud services but does not provide an explicit privacy or data-transfer warning at execution time. In a document-parsing skill, this is materially important because users may pass sensitive PDFs, office files, or images without realizing the content leaves the local environment.

VirusTotal

64/64 vendors flagged this skill as clean.

View on VirusTotal