Skip to content
← Registry
Trust Report

nudocs

Upload, edit, and export documents via Nudocs.ai. Use when creating shareable document links for collaborative editing, uploading markdown/docs to Nudocs for rich editing, or pulling back edited content. Triggers on "send to nudocs", "upload to nudocs", "edit in nudocs", "pull from nudocs", "get the nudocs link", "show my nudocs documents".

96
CERTIFIED
Format: openclawScanner: v0.8.1Duration: 14msScanned: 9d ago · Jun 27, 9:19 AMSource →
Embed this badge
AgentVerus CERTIFIED 96AgentVerus CERTIFIED 96AgentVerus CERTIFIED 96
[![AgentVerus](https://agentverus.ai/api/v1/skill/ed8dfd4d-723c-430a-9f2f-6826e014755a/badge)](https://agentverus.ai/skill/ed8dfd4d-723c-430a-9f2f-6826e014755a)
Community Discussion

Community Comments

Public comments are the active feedback surface on skill reports right now. Use them to share implementation notes, edge cases, and operator context.

0 comments

Sign in to comment on this skill

No comments yet. Be the first to share your thoughts.

Continue the workflow

Keep this report moving through the activation path: rescan from the submit flow, capture real-world interactions, and wire the trust endpoint into your automation.

https://agentverus.ai/api/v1/skill/ed8dfd4d-723c-430a-9f2f-6826e014755a/trust
Personalized next commands

Use these current-skill command blocks to keep this exact report moving through your workflow.

Record an interaction
curl -X POST https://agentverus.ai/api/v1/interactions \
  -H "Authorization: Bearer at_your_api_key" \
  -H "Content-Type: application/json" \
  -d '{"agentPlatform":"openclaw","skillId":"ed8dfd4d-723c-430a-9f2f-6826e014755a","interactedAt":"2026-03-15T12:00:00Z","outcome":"success"}'
Fetch trust JSON
curl https://agentverus.ai/api/v1/skill/ed8dfd4d-723c-430a-9f2f-6826e014755a/trust

Category Scores

92
Permissions
100
Injection
82
Dependencies
100
Behavioral
100
Content
100
Code Safety

Findings (8)

mediumCapability contract mismatch: inferred external tool bridge is not declared (declared: network)-8

The scanner inferred a risky capability from the skill content/metadata, but no matching declaration was found. Add a declaration with a clear justification, or remove the behavior. Declared permission: network — Calls Nudocs.ai through the documented CLI and service endpoints.

Content pattern: MCP integration

Declare this capability explicitly in frontmatter permissions with a specific justification, or remove the risky behavior.

permissionsASST-03
mediumMany external URLs referenced (4) (declared: network)-8

The skill references 4 external URLs and also discusses auth/API/payment workflows, which increases the chance that sensitive operations depend on many remote endpoints. Declared permission: network — Calls Nudocs.ai through the documented CLI and service endpoints.

URLs: https://nudocs.ai, https://github.com/PSPDFKit/nudocs-cli, https://nudocs.ai/file/01ABC, https://github.com/PSPDFKit/nudocs-mcp-server

Minimize external dependencies to reduce supply chain risk.

dependenciesASST-04
lowUnknown external reference (declared: network)-5

The skill references an unknown external domain which is classified as low risk. Declared permission: network — Calls Nudocs.ai through the documented CLI and service endpoints.

https://nudocs.ai

Verify that this external dependency is trustworthy and necessary.

dependenciesASST-04
lowUnknown external reference (declared: network)-5

The skill references an unknown external domain which is classified as low risk. Declared permission: network — Calls Nudocs.ai through the documented CLI and service endpoints.

https://nudocs.ai/file/01ABC

Verify that this external dependency is trustworthy and necessary.

dependenciesASST-04
infoDeclared capability not inferred: credential access (declared: credential_access)

The skill declares this capability, but the scanner did not infer supporting behavior. Keep declarations tight to reduce reviewer confusion. Declared permission: credential_access — Reads the Nudocs API key from the documented env var or local config path.

Declaration kind: credential_access

Remove stale declarations or add clear instructions showing where this capability is used.

permissionsASST-08
infoSafety boundaries defined

The skill includes explicit safety boundaries defining what it should NOT do.

Safety boundary patterns detected in content

Keep these safety boundaries. They improve trust.

contentASST-09
infoOutput constraints defined

The skill includes output format constraints (length limits, format specifications).

Output constraint patterns detected

Keep these output constraints.

contentASST-09
infoError handling instructions present

The skill includes error handling instructions for graceful failure.

Error handling patterns detected

Keep these error handling instructions.

contentASST-09