TrainClaw
PassAudited by ClawScan on May 1, 2026.
Overview
TrainClaw appears to be a straightforward China Rail query skill with disclosed, purpose-aligned network access, local station caching, and a standard Python dependency.
This skill looks safe for ordinary train-ticket, route-stop, and transfer lookups. Before installing, be aware that it contacts 12306 services with your search details, may create a local station-data cache, and depends on the Python requests package.
Findings (4)
Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.
The agent may run the TrainClaw command to answer train-ticket questions, but the shown commands are lookup-only.
The skill tells the agent to invoke a local Python CLI with user-derived route and date parameters. This is the core read-only query mechanism and is disclosed, but it is still local tool execution.
执行命令: python trainclaw.py query -f 北京 -t 上海 -d 2026-03-04 --type G
Use it for train lookups you intend to perform, and avoid asking it to process unrelated shell commands or sensitive non-travel data.
Installing dependencies could pull a newer requests version than the author tested.
The HTTP dependency is declared with a version range rather than an exact pin. This is common for a Python CLI, but the installed package version depends on the user's package source and environment.
requests>=2.28.0
Install dependencies from a trusted package index or pin versions in your own environment if reproducibility matters.
Your train-search details may be sent to China Rail 12306 endpoints when the skill runs.
The skill is configured to use external 12306 services for train lookups. This matches the advertised purpose, but searched routes, dates, and train identifiers may be disclosed to those services.
API_BASE = "https://kyfw.12306.cn" SEARCH_API_BASE = "https://search.12306.cn"
Only use the skill for travel queries you are comfortable sharing with the relevant public rail-query services.
The skill may create a local cache directory containing station data.
The skill persists downloaded station data locally for reuse. The disclosed cache appears limited to station metadata, not user credentials or private files.
缓存目录: `cache/`(车站数据自动缓存 7 天)
Treat the cache as normal application data; clear it if you want to force a fresh station-data download.