ClawHub

Deer

Security checks across malware telemetry and agentic risk

Overview

This dermatology booking skill mostly matches its stated purpose, but it exposes API tokens and can submit appointment details to an external service without a clear in-flow confirmation step.

Review this before installing if you are comfortable with appointment data being sent to BeautsGO and with the publisher embedding service API tokens in the skill. Do not provide a phone number unless you intend it to be used for booking follow-up, and prefer a version that adds a clear confirmation screen before submission and removes hardcoded secrets.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • MCP Tool PoisoningHidden Instructions, Unicode Deception, Parameter Description Injection
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Findings (2)

Intent-Code Divergence

Medium
Confidence
94% confidence
Finding
The file header identifies the module as 'JD皮肤科预约技能' while the manifest says the skill is 'deer-booking / 鹿美人皮肤科'. This kind of identity mismatch is a supply-chain and trust problem because it can indicate copied code, misbound skill assets, or users being routed through logic intended for a different clinic brand, making consent and operator attribution unclear.

Missing User Warnings

Medium
Confidence
98% confidence
Finding
The booking flow transmits personal data including contact information, appointment time, hospital identifier, and party size to an external API, but the user-facing prompts in this file do not clearly disclose that this data will be sent to third-party infrastructure. That creates a privacy and consent risk, especially because users are encouraged to provide phone numbers directly in chat.

VirusTotal

VirusTotal findings are pending for this skill version.

View on VirusTotal