Back to skill
Skillv1.0.0
ClawScan security
OCR Test · ClawHub's context-aware review of the artifact, metadata, and declared behavior.
Scanner verdict
BenignMar 14, 2026, 11:32 PM
- Verdict
- Benign
- Confidence
- high
- Model
- gpt-5-mini
- Summary
- The skill's code, instructions, and requirements are consistent with an OCR utility using Tesseract.js; it requests no credentials and only needs Node and the tesseract.js dependency.
- Guidance
- This skill appears to do only local OCR and needs only Node plus the tesseract.js npm package. Before installing: (1) be aware first run will download Tesseract language data (~20MB per language) from upstream/CDN — ensure network access and trust the source; (2) images are processed locally, but do not feed it sensitive images unless you trust the host machine; (3) you can inspect package.json and scripts/ocr.js (included) to confirm no unexpected network endpoints or secret usage; (4) if you require air-gapped operation, block network access or pre-provision the traineddata files.
Review Dimensions
- Purpose & Capability
- okName/description match the provided files: a Node script that calls tesseract.js to OCR local images. Required binary (node) and the dependency (tesseract.js) are appropriate and proportionate.
- Instruction Scope
- noteSKILL.md and scripts/ocr.js restrict activity to reading a user-supplied image file and running Tesseract locally. The README/SKILL.md correctly note first-run language-data downloads (~20MB/lang). There is no code that reads unrelated files or accesses environment variables. Note: traineddata will be fetched from upstream/CDN by tesseract.js on first run (download-only); this is expected but does involve network access.
- Install Mechanism
- okNo custom install script is bundled; package.json depends on tesseract.js from npm which is a normal, auditable source. No arbitrary URL downloads or archive extraction in the skill itself.
- Credentials
- okThe skill requests no environment variables or credentials. The lack of secrets is proportionate to the stated purpose.
- Persistence & Privilege
- okalways is false; the skill does not modify other skills or require persistent elevated privileges. It will cache downloaded language data locally (expected behavior).