ClawHub

1688-product-to-ozon

Security checks across malware telemetry and agentic risk

Overview

This skill does what it claims, but it can automatically translate and publish Ozon marketplace listings using seller credentials without a clear final approval step.

Review this skill before installing if it will be connected to a real seller account. Use it only when you intend to send product images and listing metadata to AlphaShop and Ozon, and require a manual check of the generated product JSON, translated text/images, prices, and target Ozon account before running the upload step.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Trigger AbuseOverly Broad Trigger, Shadow Command Trigger, Keyword Baiting Trigger
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Findings (5)

Missing User Warnings

Medium
Confidence
88% confidence
Finding
The README advertises automatic image translation and product upload to external services but does not warn users that product images and metadata will be transmitted to third-party platforms. In this skill context, merchant product assets may contain sensitive business information, copyrighted content, supplier identifiers, or personal data embedded in images, so the lack of disclosure meaningfully increases privacy and compliance risk.

Vague Triggers

Medium
Confidence
82% confidence
Finding
The trigger keyword '铺货' is overly broad and can activate a skill that performs external API calls, image translation, file writes, and product upload in contexts where the user did not specifically intend Ozon listing. In an agent ecosystem, overbroad invocation can lead to unintended transmission of product data and use of stored credentials.

Missing User Warnings

Medium
Confidence
93% confidence
Finding
The skill instructs automatic translation and upload of product data and images to third-party services but does not require a clear user-facing notice or explicit consent at the point of transmission. Because images and product content may contain proprietary or sensitive business data, silent external transfer to AlphaShop and Ozon materially increases confidentiality and compliance risk.

Natural-Language Policy Violations

Medium
Confidence
85% confidence
Finding
Forcing all titles and non-numeric text to be translated into Russian without user choice can cause unintended disclosure of content to a translation provider and can alter business-critical listing text without review. In this skill's context, the fixed-language transformation is tightly coupled to external processing and marketplace publication, making accidental or undesired publication more likely.

Missing User Warnings

Low
Confidence
90% confidence
Finding
The script prints the full API response directly to stdout, which can disclose network-fetched task and product details to local logs, terminal history, CI output, or shared execution environments. In this skill’s context, the response may contain seller inventory metadata, offer IDs, product IDs, validation errors, or other business-sensitive information, so unrestricted dumping increases the risk of accidental data exposure.

VirusTotal

66/66 vendors flagged this skill as clean.

View on VirusTotal