Vulnerable to command injection via user input
Claims to do
OCR - Image Text Recognition (Local): Extract text from images using Tesseract.js. **100% local run, no API key required.** Supports Chinese and English.
Actually does
The skill executes a Node.js script (`ocr.js`) to perform OCR on a specified local image file using Tesseract.js. It supports English and Chinese languages, allowing users to specify language codes and output format (plain text or JSON). On its first execution for a given language, it downloads approximately 20MB of language data from an external source.
openclaw skills install nvoicejacob/ocr-local-1-0-0The skill executes a local Node.js script (`ocr.js`) with arguments that could be derived from user input. Without proper sanitization by the agent or the script, this creates a potential for command injection.
node {baseDir}/scripts/ocr.js /path/to/image.jpgThe skill claims to be '100% local run', but explicitly states that the 'First run downloads language data (~20MB per language)', which requires an external network connection.
Claim: '100% local run, no API key required.' Note: 'First run downloads language data (~20MB per language)'
[](https://mondoo.com/ai-agent-security/skills/clawhub/nvoicejacob/ocr-local-1-0-0)<a href="https://mondoo.com/ai-agent-security/skills/clawhub/nvoicejacob/ocr-local-1-0-0"><img src="https://mondoo.com/ai-agent-security/api/badge/clawhub/nvoicejacob/ocr-local-1-0-0.svg" alt="Mondoo Skill Check" /></a>https://mondoo.com/ai-agent-security/api/badge/clawhub/nvoicejacob/ocr-local-1-0-0.svgSkills can read files, run commands, and access credentials. Mondoo helps organizations manage the security risks of AI agent skills across their entire fleet.