← Back to Skills Marketplace
136
Downloads
0
Stars
0
Active Installs
2
Versions
Install in OpenClaw
/install redact
Description
Privacy redaction toolkit for images, PDFs, Word documents, and PowerPoint presentations. Use when the user needs to redact, mask, or replace sensitive/priva...
Usage Guidance
This package appears to be a legitimate local redaction/OCR toolkit. Before installing, note: 1) It requires heavy ML packages (paddlepaddle/paddleocr/paddlex) that may download large binaries or model files during install or first run and may require a lot of disk space and time. 2) The scripts create a cache directory (~/.cache/redact_temp) and temporary result directories; inspect and clean these if you need to avoid leaving extracted content on disk. 3) The code sets DISABLE_MODEL_SOURCE_CHECK in its environment—this is likely non-malicious but unusual; review the scripts if you have strict execution policies. 4) Run the tool in an isolated virtual environment (uv creates one) and inspect sample runs on non-sensitive files first. There are no declared network endpoints, no requested credentials, and no obvious exfiltration code in the bundle, but be aware that model downloads will require network access during install/use.
Capability Analysis
Type: OpenClaw Skill
Name: redact
Version: 0.1.1
The skill bundle provides legitimate privacy redaction tools but contains high-risk code patterns that are vulnerable to exploitation. Specifically, `read.py` and `redact-presentation.py` use `subprocess.run` to execute system-level commands via PowerShell (Windows), AppleScript (macOS), and LibreOffice for document conversion. While the scripts attempt some basic sanitization (e.g., escaping quotes), the construction of these command strings is fragile and potentially vulnerable to command injection if an attacker provides a file with a specially crafted name. No evidence of intentional malice, such as data exfiltration or hardcoded backdoors, was found; however, the reliance on shell execution for core functionality poses a significant security risk.
Capability Assessment
Purpose & Capability
Name and description claim OCR-based redaction for images/PDF/docx/pptx; the repository includes scripts for reading and redacting each format and lists expected Python OCR and document libraries (PaddleOCR/PPStructureV3, PyMuPDF, python-docx, python-pptx, Pillow). These dependencies and scripts are expected for the stated purpose.
Instruction Scope
SKILL.md instructs running the included scripts with a rules CSV and to use 'uv sync' to install dependencies. The scripts operate on local files and perform OCR and in-place replacements/masking. They create temporary directories and a persistent cache directory (~/.cache/redact_temp) for intermediate outputs; some temp directories are cleaned up but others may remain depending on code paths. The runtime instructions do not ask for unrelated files, credentials, or external endpoints, but they do not explicitly warn about model weight downloads (see install_mechanism note).
Install Mechanism
There is no platform install spec in the registry; SKILL.md recommends using 'uv sync' to create a venv and install dependencies from pyproject. Dependencies include paddlepaddle/paddleocr/paddlex which are large and may pull model binaries or wheels from package/model hosting during installation or first use. No arbitrary URL downloads or obscure installers are present in the bundle itself.
Credentials
The skill declares no required environment variables, credentials, or config paths. The code sets a few environment variables locally (e.g., DISABLE_MODEL_SOURCE_CHECK, FLAGS_use_mkldnn) which affect runtime behavior but are internal to the scripts. No secret-exposing env vars are requested.
Persistence & Privilege
always is false and the skill does not request elevated or persistent platform privileges. It writes temporary data to disk (creates ~/.cache/redact_temp and various temp dirs) but does not modify other skills or system-wide agent settings.
How to Use
- Make sure OpenClaw is installed (local or Docker)
- Run the install command in chat:
/install redact - After installation, invoke the skill by name or use
/redact - Provide required inputs per the skill's parameter spec and get structured output
Version History
v0.1.1
- Added read.py script to support extracting text (via OCR) from images, PDFs, Word, and PowerPoint files
- Updated SKILL.md with usage and output formats for read.py, including structured and JSON output
- Switched to uv for environment setup and dependency management instructions
- Removed the obsolete scripts/init-runtime.sh file
v0.1.0
- Initial release of the redact privacy toolkit.
- Supports redacting sensitive information in images (png/jpg), PDFs, Word, and PowerPoint files.
- Uses rules-based redaction: replace text or mask with solid color blocks or █ characters.
- Handles text in tables, headers/footers, and embedded images in supported formats.
- Includes CLI scripts for each file type with CSV rules input.
Metadata
Frequently Asked Questions
What is Redact?
Privacy redaction toolkit for images, PDFs, Word documents, and PowerPoint presentations. Use when the user needs to redact, mask, or replace sensitive/priva... It is an AI Agent Skill for Claude Code / OpenClaw, with 136 downloads so far.
How do I install Redact?
Run "/install redact" in the OpenClaw or Claude Code chat to install it in one step — no extra setup required.
Is Redact free?
Yes, Redact is completely free, licensed under MIT-0. You can download, install and use it at no cost.
Which platforms does Redact support?
Redact is cross-platform and runs anywhere OpenClaw / Claude Code is available (cross-platform).
Who created Redact?
It is built and maintained by noah (@darknoah); the current version is v0.1.1.
More Skills