ClawHub

Mistral OCR

PassAudited by ClawScan on May 1, 2026.

Overview

This appears to be a straightforward OCR skill, but it sends selected documents to Mistral’s cloud and uses a Mistral API key, so avoid sensitive files unless you accept that.

Install only if you are comfortable sending chosen PDFs or images to Mistral for OCR. Do not use it for confidential documents unless Mistral’s data handling is acceptable to you, and keep your MISTRAL_API_KEY private.

Findings (3)

Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.

NoteHigh Confidence
ASI07: Insecure Inter-Agent Communication
What this means

Any document processed with the skill is shared with Mistral’s cloud service, which may be inappropriate for confidential or regulated files.

Why it was flagged

The selected input file is read locally and uploaded to Mistral’s API for OCR. This is core to the skill and disclosed, but it means document contents leave the local environment.

Skill content
uploaded_file = client.files.upload(... "content": input_path.read_bytes(), ... purpose="ocr")
Recommendation

Use this only for files you are comfortable sending to Mistral, review Mistral’s privacy policy, and use an offline OCR tool for sensitive documents.

NoteHigh Confidence
ASI03: Identity and Privilege Abuse
What this means

If the API key is exposed, someone else may be able to use the user’s Mistral account or incur usage under it.

Why it was flagged

The skill requires a Mistral API key and suggests optionally storing it persistently in a shell profile. This is expected for the Mistral API, but users should treat the key as an account credential.

Skill content
export MISTRAL_API_KEY=your_api_key_here ... echo 'export MISTRAL_API_KEY=your_api_key_here' >> ~/.zshrc
Recommendation

Store the API key carefully, prefer a secret manager or temporary environment variable on shared systems, and rotate the key if it may have been exposed.

NoteHigh Confidence
ASI04: Agentic Supply Chain Vulnerabilities
What this means

A future dependency version could behave differently from the version the author tested.

Why it was flagged

The Python dependency is open-ended rather than pinned to an exact version, so future installs may pull newer package behavior. This is purpose-aligned for a Mistral wrapper but less reproducible.

Skill content
mistralai>=0.0.9
Recommendation

Review or pin the dependency version before installing in sensitive environments.