← 返回 Skills 市场
Stirling PDF
作者
angusthefuzz
· GitHub ↗
· v1.0.4
920
总下载
2
收藏
4
当前安装
5
版本数
在 OpenClaw 中安装
/install stirling-pdf
功能描述
Self-hosted REST API for comprehensive PDF manipulation including merge, split, convert, OCR, compress, sign, redact, and secure PDFs.
安全使用建议
This skill appears to be what it says: a small Node wrapper that uploads files to a Stirling-PDF REST API. Before installing or enabling it, verify the source (no homepage provided) and consider these practical precautions:
- Ensure STIRLING_PDF_URL points to a trusted instance (localhost or your own server). If you point it to a remote or third-party URL, any file you process will be uploaded there.
- If your PDFs contain sensitive data, avoid setting a remote URL or disable autonomous invocation so the agent cannot call the skill without your explicit command.
- If you will use an API key, store it in a secure secret store and confirm the key's scope on your Stirling-PDF instance.
- Inspect the included script (scripts/pdf.js) yourself — it's short and readable — or run it in an isolated environment before granting broader access.
- Because the skill's provenance is unknown (no homepage/source repo), prefer onboarding it in a sandbox or test account and confirm behavior against a local Stirling-PDF instance. If you need higher assurance, request a version published by a verifiable maintainer or from an official project repository.
功能分析
Type: OpenClaw Skill
Name: stirling-pdf
Version: 1.0.4
The `scripts/pdf.js` wrapper script is vulnerable to local file disclosure and arbitrary file write due to insufficient input sanitization when constructing `curl` commands. User-controlled input for the output file path (`-o`) is passed directly to `curl`, allowing arbitrary file writes. Furthermore, user-controlled input for form field values (e.g., watermark text via `-t`) is passed to `curl -F`, which can be exploited by injecting `@/path/to/sensitive/file` to read and exfiltrate local files to the configured Stirling-PDF server. The `SKILL.md` directly instructs the AI agent to execute these commands with user-provided arguments, creating a prompt injection surface for these vulnerabilities.
能力评估
Purpose & Capability
Name/description (self-hosted PDF REST API wrapper) aligns with the included files and runtime instructions. Declared required binaries (node, curl) are necessary for the provided CLI wrapper and curl-based requests. No unrelated credentials, binaries, or install behavior are requested.
Instruction Scope
SKILL.md instructs the agent to run the included Node wrapper which performs multipart POSTs of user-specified files to the configured STIRLING_PDF_URL endpoints. The script only reads files explicitly passed as arguments and environment variables STIRLING_PDF_URL / STIRLING_API_KEY. This is within scope for PDF operations, but it does mean any file you pass will be uploaded to whatever URL is configured (default localhost). If the URL is changed to a remote host, that can result in exfiltration of sensitive files — the behavior is expected but must be considered.
Install Mechanism
There is no install spec (instruction-only with one local script), so nothing is downloaded or written by an installer. Risk from installation is low because no arbitrary remote install URLs or package pulls are present.
Credentials
No required environment variables or secrets are forced by the registry metadata. The script uses two optional env vars (STIRLING_PDF_URL, STIRLING_API_KEY) which are appropriate for a REST API client. The number and type of env vars are proportional to the skill's purpose.
Persistence & Privilege
always is false and the skill does not request system-wide config changes or persist credentials. The skill can be invoked autonomously by the agent (platform default) but that is not itself unusual; consider restricting autonomous use if handling sensitive documents.
如何使用
- 确保已安装 OpenClaw(本地或 Docker 部署)
- 在对话框中输入安装命令:
/install stirling-pdf - 安装完成后,直接呼叫该 Skill 的名称或使用
/stirling-pdf触发 - 根据 Skill 的参数说明提供必要输入,即可获得结构化输出
版本历史
v1.0.4
Fix metadata format for env vars (use object format)
v1.0.3
Security fixes: removed .env file fallback, use spawn instead of execSync, proper env metadata
v1.0.2
Use OPENCLAW_STATE_DIR/os.homedir() for portable .env fallback
v1.0.1
Security fix: removed hardcoded .env paths, now uses process.env only; added env vars to metadata
v1.0.0
Initial release - PDF manipulation via Stirling-PDF API (merge, split, compress, OCR, watermark, convert)
元数据
常见问题
Stirling PDF 是什么?
Self-hosted REST API for comprehensive PDF manipulation including merge, split, convert, OCR, compress, sign, redact, and secure PDFs. 它是一个面向 Claude Code / OpenClaw 的 AI Agent Skill 插件,目前累计下载 920 次。
如何安装 Stirling PDF?
在 OpenClaw 或 Claude Code 对话框中运行命令「/install stirling-pdf」即可一键安装,无需额外配置。
Stirling PDF 是免费的吗?
是的,Stirling PDF 完全免费(开源免费),可自由下载、安装和使用。
Stirling PDF 支持哪些平台?
Stirling PDF 跨平台运行,可在任意部署了 OpenClaw / Claude Code 的环境中使用(cross-platform)。
谁开发了 Stirling PDF?
由 angusthefuzz(@angusthefuzz)开发并维护,当前版本 v1.0.4。
推荐 Skills