v1.0.1

PatSight-MolVision

BenignClawScan verdict for this skill. Analyzed May 1, 2026, 7:38 AM.

Analysis

This skill appears aligned with its stated molecular image recognition purpose, but it requires PatSight credentials and uploads supplied images to external APIs.

GuidanceThis skill looks appropriate for PatSight MolVision OCSR use. Before installing, make sure you are comfortable uploading the selected molecular images to PatSight, store credentials securely, avoid putting passwords directly in prompts or shell history, and do not change the API URLs unless you trust the destination.

Findings (4)

Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.

Abnormal behavior control

Checks for instructions or behavior that redirect the agent, misuse tools, execute unexpected code, cascade across systems, exploit user trust, or continue outside the intended task.

Tool Misuse and Exploitation

SeverityLowConfidenceHighStatusNote

scripts/run_ocsr.py

p.add_argument("--base-url", default=DEFAULT_PATENT_BASE_URL, help="Patent API base URL (default: PATSIGHT_BASE_URL)")

The API endpoint is configurable. This is useful for legitimate deployments, but if set to an untrusted URL the skill could send uploaded images and an authorization token to that endpoint.

User impactA mistaken or malicious API URL setting could redirect recognition requests away from the intended PatSight service.

RecommendationLeave the default PatSight URL unless you intentionally use a trusted private endpoint.

Agentic Supply Chain Vulnerabilities

SeverityLowConfidenceMediumStatusNote

README.md

uv sync
# or
pip install requests Pillow rdkit

The README suggests manual dependency installation and unpinned packages. This is ordinary for a Python script but gives less reproducibility than a locked install specification.

User impactDependency versions may vary depending on the environment where the skill is installed.

RecommendationInstall dependencies from trusted package indexes, preferably in a virtual environment with pinned versions if reproducibility matters.

Permission boundary

Checks whether tool use, credentials, dependencies, identity, account access, or inter-agent boundaries are broader than the stated purpose.

Identity and Privilege Abuse

SeverityMediumConfidenceHighStatusNote

SKILL.md

This skill calls the PatSight Patent Extractor API and **requires patsight account and password**.

The skill needs service credentials to obtain or use an API token. This is expected for the PatSight integration, but it is sensitive account access.

User impactYour PatSight account credentials or token may be used to authenticate requests made by this skill.

RecommendationUse a dedicated PatSight account or token if possible, keep credentials in environment variables or a secret store, and avoid sharing them in chat or command history.

Sensitive data protection

Checks for exposed credentials, poisoned memory or context, unclear communication boundaries, or sensitive data that could leave the user's control.

Insecure Inter-Agent Communication

SeverityMediumConfidenceHighStatusNote

scripts/run_ocsr.py

files.append(("image", (path.name, fh, guess_mime(path)))) ... requests.post(url, params=params, files=files, headers={"Accept": "application/json", "Authorization": auth_token}, timeout=timeout)

The script uploads the supplied image files to the configured API endpoint with an authorization token. This matches the skill purpose, but it means image contents leave the local environment.

User impactMolecular images you provide are sent to the PatSight API for recognition.

RecommendationOnly process images you are allowed to upload to PatSight, and confirm the API endpoint is trusted before use.