AdvisoryAudited by VirusTotal on Apr 15, 2026.
Overview
Type: OpenClaw Skill Name: invoice-fraud-detection-pdf Version: 0.1.0 The bundle is a comprehensive and well-documented toolkit for PDF processing, including text extraction, form filling, and document manipulation. It utilizes standard Python libraries such as pypdf, pdfplumber, and reportlab, and provides clear instructions for an AI agent to handle both fillable and non-fillable forms through a structured workflow (forms.md). No evidence of malicious intent, data exfiltration, or harmful prompt injection was found; even the monkeypatch in scripts/fill_fillable_fields.py is explicitly documented as a fix for a known library bug.
Findings (0)
Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.
The skill can generate modified PDFs, so mistakes could affect documents the user later relies on or shares.
The skill delegates PDF form mutation to local Python scripts that read user-provided PDFs/JSON and write new PDFs. This is expected for the skill's purpose, but incorrect paths or field values could create unintended document outputs.
Run the `fill_fillable_fields.py` script from this file's directory to create a filled-in PDF: `python scripts/fill_fillable_fields.py <input pdf> <field_values.json> <output pdf>`
Run the scripts on copies of important PDFs, use explicit input/output paths, and review generated files before using or sharing them.
Installing unexpected or untrusted package versions could affect the user's Python environment.
The OCR example suggests installing external Python packages without pinned versions. This is normal for optional scanned-PDF processing, but package source and version selection are left to the user.
# Requires: pip install pytesseract pdf2image
Install dependencies from trusted sources, preferably in a virtual environment, and pin versions when using this in a repeatable workflow.