ClawHub

query-1688-product-detail

Security checks across malware telemetry and agentic risk

Overview

This skill appears to do what it advertises: query 1688 product details through AlphaShop, using configured AlphaShop credentials.

Install only if you intend to use AlphaShop for 1688 lookups. Use a dedicated AlphaShop API key if possible, expect queried product IDs to be sent to AlphaShop and potentially consume paid API credits, and consider pinning or reviewing the Python dependency versions before running it.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Trigger AbuseOverly Broad Trigger, Shadow Command Trigger, Keyword Baiting Trigger
  • MCP Least PrivilegeUnderdeclared Capability, Wildcard Permission, Missing Permission Declaration
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Findings (4)

Lp3

Medium
Category
MCP Least Privilege
Confidence
89% confidence
Finding
The skill declares no permissions while clearly requiring network access and use of secret-bearing configuration fields (`apiKey`/`secretKey`). This mismatch undermines least-privilege review and can cause operators or higher-level tooling to invoke the skill without understanding that it transmits user-supplied product identifiers and credentials to an external service.

Missing User Warnings

Medium
Confidence
93% confidence
Finding
The README instructs users to configure AlphaShop API credentials and submit 1688 product URLs/IDs, but it does not clearly disclose that those inputs and secrets are used to interact with an external third-party service. This creates a transparency and data-handling risk: users may unknowingly send product targets, potentially sensitive business queries, and authenticated requests to AlphaShop without understanding the trust boundary.

Vague Triggers

Medium
Confidence
84% confidence
Finding
The activation guidance is overly broad, using terms like 'ALWAYS' and 'anything related to 1688 product information,' which can force invocation even when the user's request is better handled locally or requires a different privacy posture. This increases the chance of unnecessary external transmission of URLs or identifiers and can bypass safer alternatives or user choice.

External Transmission

Medium
Category
Data Exfiltration
Content
## API details

- **Endpoint:** `POST https://api.alphashop.cn/alphashop.openclaw.offer.detail.query/1.0`
- **Auth:** `Authorization: Bearer <api_key>`
- **Body:** `{"productId": "<id>"}`
Confidence
86% confidence
Finding
https://api.alphashop.cn/

VirusTotal

66/66 vendors flagged this skill as clean.

View on VirusTotal