ClawHub

🛍️ 淘宝/京东/拼多多比价技能

Security checks across malware telemetry and agentic risk

Overview

This shopping comparison skill mostly does what it claims, but it quietly uses a preset invite/referral code when creating purchase links.

Review before installing if you care about shopping privacy or referral attribution. Use it only for product searches you are comfortable sending to maishou88.com, and assume generated purchase links may include the publisher's default invite/referral code unless MAISHOU_INVITE_CODE is overridden.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • MCP Least PrivilegeUnderdeclared Capability, Wildcard Permission, Missing Permission Declaration
  • MCP Tool PoisoningHidden Instructions, Unicode Deception, Parameter Description Injection
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Findings (3)

Lp3

Medium
Category
MCP Least Privilege
Confidence
82% confidence
Finding
The skill invokes local Python scripts and makes outbound requests, yet declares no permissions for network or environment access. This creates a transparency and consent problem: users and orchestrators cannot accurately assess or sandbox what the skill can do, especially since it relies on a third-party service for shopping data and links.

Tp4

High
Category
MCP Tool Poisoning
Confidence
93% confidence
Finding
The documented behavior materially diverges from the stated purpose: instead of directly comparing prices across the listed platforms, it appears to route requests through a single third-party aggregation/affiliate service, fetch purchase/share links and promo codes, and use hardcoded identifier-like values. This can mislead users into trusting recommendations as neutral comparison results when the skill may embed tracking, referral attribution, or undisclosed commercial bias.

Missing User Warnings

Medium
Confidence
82% confidence
Finding
The detail lookup sends product identifiers together with a hardcoded/default invite code to external services, which introduces tracking and attribution behavior not obvious to the user. In a shopping skill, outbound requests are expected, but embedding an affiliate-style invite code means user actions may be linked to the author or another party, creating an undisclosed monetization and privacy risk.

VirusTotal

64/64 vendors flagged this skill as clean.

View on VirusTotal