ClawHub

search-1688-supplier

Security checks across malware telemetry and agentic risk

Overview

This skill appears to do what it says: it searches 1688 suppliers through AlphaShop, using AlphaShop credentials and sending search inputs to that API.

Install only if you trust the publisher and AlphaShop API integration. Configure the AlphaShop keys through the skill environment, avoid pasting secrets into chat, and do not submit private, internal, or signed image URLs unless you are comfortable sending them to AlphaShop.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
  • MCP Least PrivilegeUnderdeclared Capability, Wildcard Permission, Missing Permission Declaration
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Findings (6)

Lp3

Medium
Category
MCP Least Privilege
Confidence
93% confidence
Finding
The skill requires environment secrets (`ALPHASHOP_ACCESS_KEY` and `ALPHASHOP_SECRET_KEY`) and performs outbound API access, but the manifest does not declare corresponding permissions. Undeclared access to secrets and network creates a transparency and policy-enforcement gap: a host may expose credentials or allow external requests without users/admins being clearly informed at install or review time.

Missing User Warnings

Medium
Confidence
94% confidence
Finding
The README instructs users to supply AlphaShop API credentials and submit keywords, product links, or image URLs, but it does not disclose that these inputs are sent to an external third-party service. This creates a privacy and data-handling transparency issue: users may unknowingly transmit proprietary sourcing queries, sensitive product images, or internal URLs to AlphaShop, which could violate organizational policies or user expectations.

Unpinned Dependencies

Low
Category
Supply Chain
Content
requests>=2.20.0
PyJWT>=2.0.0
Confidence
94% confidence
Finding
requests>=2.20.0

Unpinned Dependencies

Low
Category
Supply Chain
Content
requests>=2.20.0
PyJWT>=2.0.0
Confidence
94% confidence
Finding
PyJWT>=2.0.0

Known Vulnerable Dependency: requests — 10 advisory(ies): CVE-2014-1830 (Exposure of Sensitive Information to an Unauthorized Actor in Requests); CVE-2024-47081 (Requests vulnerable to .netrc credentials leak via malicious URLs); CVE-2024-35195 (Requests `Session` object does not verify requests after making first request wi) +7 more

High
Category
Supply Chain
Confidence
97% confidence
Finding
requests

Known Vulnerable Dependency: PyJWT — 8 advisory(ies): CVE-2026-32597 (PyJWT accepts unknown `crit` header extensions); CVE-2024-53861 (PyJWT Issuer field partial matches allowed); CVE-2022-29217 (Key confusion through non-blocklisted public key formats) +5 more

High
Category
Supply Chain
Confidence
96% confidence
Finding
PyJWT

VirusTotal

66/66 vendors flagged this skill as clean.

View on VirusTotal