ClawHub

frompdf

v1.0.0

PDF extraction API for AI agents and LLM pipelines. Converts any PDF into semantic AST, markdown, HTML, plain text, or LLM-ready chunks — no page limit. Also...

0· 99·0 current·0 all-time
by@techtonicllc
MIT-0
Download zip
LicenseMIT-0 · Free to use, modify, and redistribute. No attribution required.
Security Scan
VirusTotalVirusTotal
Benign
View report →
OpenClawOpenClaw
Benign
high confidence
Purpose & Capability
Name, description, and runtime instructions all describe a hosted PDF-extraction API. The single required env var (FROMPDF_API_KEY) is appropriate for an external API. No unrelated credentials, binaries, or installs are requested.
Instruction Scope
SKILL.md explicitly instructs uploading PDF files to api.frompdf.dev and shows endpoints for extract/diff/score/usage. This is in-scope for the stated purpose. Note: uploading document contents to a third-party server is inherent to this skill — users should avoid confidential documents unless they've reviewed the provider's privacy policy and terms.
Install Mechanism
Instruction-only skill with no install spec and no code files. Lowest installation risk — nothing is written to disk by the skill itself.
Credentials
Only one required environment variable (FROMPDF_API_KEY), which matches the documented use of Bearer auth for the API. No extraneous secrets, config paths, or broad credential requests are present.
Persistence & Privilege
always is false and the skill does not request persistent system privileges or modifications to other skills or system settings. Autonomous invocation is allowed (platform default) but not combined with other red flags.
Assessment
This skill appears to do what it claims: it uploads PDFs to api.frompdf.dev and returns structured output. Before installing or using it: (1) review the provider's privacy policy and terms to confirm how long files are retained and whether data may be used for training; (2) do not upload sensitive or confidential documents unless you trust the service or have an enterprise/data-processing agreement; (3) treat FROMPDF_API_KEY like any API secret—store it securely, rotate it if compromised, and limit its scope if the provider supports scoped keys; (4) verify the service's legitimacy (homepage, HTTPS/TLS, community feedback) if you intend to process many or highly sensitive files.

Like a lobster shell, security has layers — review code before you run it.

latestvk974pdt3m7tkw7zgq26hdwvgb5834a89

License

MIT-0
Free to use, modify, and redistribute. No attribution required.
Termshttps://spdx.org/licenses/MIT-0.html

Runtime requirements

📄 Clawdis
EnvFROMPDF_API_KEY

Comments