ClawHub

Sinopec Oil Price

Security checks across malware telemetry and agentic risk

Overview

This skill is a coherent oil-price lookup tool with expected network access and local price-history storage, but users should keep its HTTP dependency updated.

Install only if you are comfortable with province queries being sent to the Sinopec API and small local history files being written for monitoring. Use the bundled lockfile or update axios deliberately, and only add the cron examples if you intentionally want scheduled checks.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
  • Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Findings (4)

Context-Inappropriate Capability

Medium
Confidence
94% confidence
Finding
The skill constructs filesystem paths directly from the user-controlled province value when reading and writing history files. If an attacker can supply crafted province names containing path traversal sequences, they may read or overwrite unintended files relative to the skill directory, making this a real file access vulnerability despite the feature's benign purpose.

Missing User Warnings

Medium
Confidence
94% confidence
Finding
The API documents a `recipient_id`/open_id parameter for sending notifications but provides no warning, authorization requirement, or ownership constraint. In a messaging-capable skill, this can enable misuse where callers send oil-price notifications to arbitrary users, leading to spam, privacy issues, or unauthorized message delivery if the implementation trusts caller-supplied IDs.

Unpinned Dependencies

Low
Category
Supply Chain
Content
"monitor": "node monitor-oil-price.js"
  },
  "dependencies": {
    "axios": "^1.6.0"
  },
  "keywords": ["openclaw", "skill", "oil-price", "sinopec"],
  "author": "",
Confidence
93% confidence
Finding
"axios": "^1.6.0"

Known Vulnerable Dependency: axios==1.6.0 — 10 advisory(ies): CVE-2025-62718 (Axios has a NO_PROXY Hostname Normalization Bypass that Leads to SSRF); CVE-2026-42044 (Axios: Invisible JSON Response Tampering via Prototype Pollution Gadget in `pars); CVE-2026-25639 (Axios is Vulnerable to Denial of Service via __proto__ Key in mergeConfig) +7 more

High
Category
Supply Chain
Confidence
98% confidence
Finding
axios==1.6.0

VirusTotal

66/66 vendors flagged this skill as clean.

View on VirusTotal