ClawHub

frompdf

Security checks across malware telemetry and agentic risk

Overview

This skill appears to be a straightforward cloud PDF-processing helper, but users should understand that PDFs, API credentials, and encrypted-PDF passwords may be sent to frompdf.dev.

Install only if you are comfortable sending selected PDFs to frompdf.dev for processing. Do not use it on confidential, regulated, or encrypted files unless you have approved that service and understand how it handles uploaded documents and supplied passwords.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
  • Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
Findings (8)

External Transmission

Medium
Category
Data Exfiltration
Content
```bash
# Register (10 free credits, no credit card)
curl -s -X POST https://api.frompdf.dev/register \
  -H "Content-Type: application/json" \
  -d '{"email": "you@example.com", "password": "yourpassword"}'
# → {"api_key": "frompdf_..."}
Confidence
93% confidence
Finding
curl -s -X POST https://api.frompdf.dev/register \ -H "Content-Type: application/json" \ -d

External Transmission

Medium
Category
Data Exfiltration
Content
```bash
# Register (10 free credits, no credit card)
curl -s -X POST https://api.frompdf.dev/register \
  -H "Content-Type: application/json" \
  -d '{"email": "you@example.com", "password": "yourpassword"}'
# → {"api_key": "frompdf_..."}
Confidence
93% confidence
Finding
https://api.frompdf.dev/

External Transmission

Medium
Category
Data Exfiltration
Content
# → {"api_key": "frompdf_..."}

# Extract a PDF (returns JSON semantic AST by default)
curl -s -X POST https://api.frompdf.dev/v1/extract \
  -H "Authorization: Bearer $FROMPDF_API_KEY" \
  -F "file=@document.pdf"
```
Confidence
99% confidence
Finding
https://api.frompdf.dev/

External Transmission

Medium
Category
Data Exfiltration
Content
```bash
# Extract content from a PDF (1 credit)
curl -s -X POST https://api.frompdf.dev/v1/extract \
  -H "Authorization: Bearer $FROMPDF_API_KEY" \
  -F "file=@document.pdf" \
  -F "format=chunks"
Confidence
99% confidence
Finding
https://api.frompdf.dev/

External Transmission

Medium
Category
Data Exfiltration
Content
-F "format=chunks"

# Encrypted PDF
curl -s -X POST https://api.frompdf.dev/v1/extract \
  -H "Authorization: Bearer $FROMPDF_API_KEY" \
  -F "file=@protected.pdf" \
  -F "password=secret"
Confidence
99% confidence
Finding
https://api.frompdf.dev/

External Transmission

Medium
Category
Data Exfiltration
Content
-F "password=secret"

# Semantic diff — compare two PDFs, get structured changes (2 credits)
curl -s -X POST https://api.frompdf.dev/v1/diff \
  -H "Authorization: Bearer $FROMPDF_API_KEY" \
  -F "file_a=@v1.pdf" \
  -F "file_b=@v2.pdf"
Confidence
98% confidence
Finding
https://api.frompdf.dev/

External Transmission

Medium
Category
Data Exfiltration
Content
-F "file_b=@v2.pdf"

# Readability score — returns 0-100 score for a PDF (1 credit)
curl -s -X POST https://api.frompdf.dev/v1/score \
  -H "Authorization: Bearer $FROMPDF_API_KEY" \
  -F "file=@document.pdf"
Confidence
97% confidence
Finding
https://api.frompdf.dev/

External Transmission

Medium
Category
Data Exfiltration
Content
-F "file=@document.pdf"

# Check credits and subscription status (free)
curl -s https://api.frompdf.dev/v1/usage \
  -H "Authorization: Bearer $FROMPDF_API_KEY"
```
Confidence
90% confidence
Finding
https://api.frompdf.dev/

VirusTotal

66/66 vendors flagged this skill as clean.

View on VirusTotal