Skills
skills/zai-org/glm-skills/glmocr-handwriting/Gen Agent Trust Hub

glmocr-handwriting

Pass

Audited by Gen Agent Trust Hub on Apr 18, 2026

Risk Level: SAFE
Full Analysis
  • [DATA_EXPOSURE]: The skill requires the ZHIPU_API_KEY environment variable to authenticate with the ZhiPu AI platform. The implementation uses this key correctly, passing it via the Authorization header to the official API endpoint https://open.bigmodel.cn/api/paas/v4/layout_parsing.
  • [COMMAND_EXECUTION]: The script scripts/glm_ocr_cli.py allows reading local files for OCR processing. This is a primary function of the skill and is controlled by the user-provided file paths.
  • [EXTERNAL_DOWNLOADS]: The script uses the standard requests library to communicate with the ZhiPu API. It does not download or execute any unknown external scripts or binaries.
Audit Metadata
Risk Level
SAFE
Analyzed
Apr 18, 2026, 05:48 PM