ClawHub
Back to skill
v1.0.0

Pdf Extract

BenignClawScan verdict for this skill. Analyzed May 1, 2026, 5:18 AM.

Analysis

This is a simple, coherent PDF-to-text helper using pdftotext; users should mainly notice the manual system package install and that extracted PDF contents may enter LLM context.

GuidanceThis skill appears safe and narrowly scoped for extracting text from PDFs. Before installing, make sure you trust the poppler-utils package source, and only process PDFs whose contents you are comfortable letting the agent/model read.

Findings (2)

Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.

Abnormal behavior control

Checks for instructions or behavior that redirect the agent, misuse tools, execute unexpected code, cascade across systems, exploit user trust, or continue outside the intended task.

Agentic Supply Chain Vulnerabilities
SeverityInfoConfidenceHighStatusNote
SKILL.md
sudo dnf install poppler-utils

The setup step installs an OS package to provide pdftotext. This is purpose-aligned and user-directed, but it modifies the local system and depends on the configured package repository.

User impactInstalling the dependency changes your local environment like any other system package installation.
RecommendationInstall poppler-utils only from trusted OS repositories and confirm it is the expected package for your platform.
Sensitive data protection

Checks for exposed credentials, poisoned memory or context, unclear communication boundaries, or sensitive data that could leave the user's control.

Memory and Context Poisoning
SeverityLowConfidenceHighStatusNote
SKILL.md
Extract text from PDF files for LLM processing. Uses `pdftotext` ... to convert PDF documents into plain text.

The skill intentionally turns PDF contents into text for model use. This is expected for the skill, but PDF text may contain sensitive information or embedded instructions that should not automatically be trusted as agent instructions.

User impactText from PDFs you process may become part of the agent/model context.
RecommendationUse it on documents you intend to share with the agent, and treat extracted document text as untrusted content rather than commands.