Skill flagged — suspicious patterns detected
ClawHub Security flagged this skill as suspicious. Review the scan results before using.
PDF All-in-One
v1.0.2All-in-one PDF processing tool. Merge, split, extract, convert PDFs. Supports text extraction, table recognition, PDF-to-image conversion, OCR. Triggers: PDF...
⭐ 0· 118·0 current·0 all-time
bywurang@sonicrang
MIT-0
Download zip
LicenseMIT-0 · Free to use, modify, and redistribute. No attribution required.
Security Scan
OpenClaw
Suspicious
medium confidencePurpose & Capability
The name/description (PDF processing, merge/split/convert/ocr/fill) matches the included Python scripts and docs: extract_form_structure, converters, form-fillers, bounding-box checks, etc. The reference docs list a broad set of libraries (pypdf, pdfplumber, pdf2image, pytesseract, pypdfium2, reportlab) which are appropriate for the stated purpose. However, the registry metadata declares no required binaries or system dependencies even though SKILL.md and scripts instruct the user to install system tools (poppler/pdftoppm/pdftotext, ImageMagick 'magick', qpdf/pdftk, tesseract) — that mismatch is an engineering/provenance inconsistency worth noting.
Instruction Scope
SKILL.md and the scripts operate on local PDF files and local output directories (workspace: <current_workspace>/pdf-all-in-one-workspace/). The instructions reference only local file operations, CLI tools, and Python libraries. The runtime instructions do not direct data to external network endpoints or request unrelated system files or credentials. They do instruct installing and using system utilities (poppler, ImageMagick) and editing/creating PDFs and images — expected for this functionality.
Install Mechanism
There is no install spec (instruction-only), which is low-risk from an automatic install perspective. The package does include multiple Python scripts bundled with the skill; running them requires installing third-party Python packages and system utilities manually. The instructions point to installing via pip and OS package managers (apt/yum/brew) and using ImageMagick; those are common but not declared in registry metadata.
Credentials
The skill declares no required environment variables, no credentials, and no config paths. The scripts do not read environment variables or network credentials. They operate solely on user-supplied PDF files and JSON form descriptions, so there is no disproportionate secret access requested.
Persistence & Privilege
The skill is not marked always:true and does not request persistent system-wide privileges. It is user-invocable and allows normal autonomous invocation (platform default). The scripts write output files into the declared workspace and do not modify other skills or global agent configuration.
What to consider before installing
This skill's code and docs are consistent with a PDF processing tool and do not attempt network exfiltration or require secrets — that is a good sign. Before using it: 1) Verify the skill's source/author (homepage is missing and LICENSE claims Anthropic while the registry owner differs) — if provenance matters, treat this as untrusted until you confirm origin. 2) Install and run in an isolated environment (container or disposable VM) because the scripts will execute locally and may require sudo to install system tools (poppler, ImageMagick, tesseract, qpdf/pdftk). 3) Review the bundled scripts (they are included) yourself; pay attention to the monkeypatch in fill_fillable_fields.py (it patches a pypdf internal method — unusual but local). 4) Only run the scripts on non-sensitive PDFs or copies until you’re comfortable with behavior and output. If you need higher assurance, ask the publisher for a canonical homepage/repository or a signed release.Like a lobster shell, security has layers — review code before you run it.
latestvk978v0hkpc6m63dkn2h2ja28kx833w6n
License
MIT-0
Free to use, modify, and redistribute. No attribution required.
Runtime requirements
📕 Clawdis