Back to skill
Skillv2.2.0
VirusTotal security
pdf-ocr · External malware reputation and Code Insight signals for this exact artifact hash.
Scanner verdict
SuspiciousApr 30, 2026, 5:39 AM
- Hash
- 5859c1120d37726c8a384f5aa3063c861639bad3976d8616575706f642e699ef
- Source
- palm
- Verdict
- suspicious
- Code Insight
- Type: OpenClaw Skill Name: pdf-ocr-skill Version: 2.2.0 The skill bundle contains a high-risk behavior in `scripts/pdf_ocr_processor.py`, where it defines an `install_dependency` function that uses `subprocess.check_call` to automatically execute `pip install` for missing libraries at runtime. While the currently hardcoded packages (rapidocr_onnxruntime, pymupdf, pillow) are legitimate, this pattern of auto-installing dependencies is a common vector for supply chain risks and unauthorized code execution. The rest of the bundle, including the prompt instructions in `SKILL.md` and the integration with the SiliconFlow API (api.siliconflow.cn), appears consistent with its stated purpose as an OCR utility.
- External report
- View on VirusTotal