ClawHub

快递查询demo

Security checks across malware telemetry and agentic risk

Overview

This is a straightforward package-tracking helper that uses KuaiDi100, but users should know their tracking details are sent to that service.

Install only if you are comfortable sending shipment identifiers, carrier codes, and any optional phone-number suffix you provide to KuaiDi100 under your KuaiDi100 account. Store the API key and customer ID securely as environment variables, avoid submitting tracking data you are not authorized to share, and verify the actual script path before use.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
  • Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
Findings (2)

Missing User Warnings

Medium
Confidence
95% confidence
Finding
The documentation instructs users to send package tracking numbers and optionally the last four digits of a phone number to the KuaiDi100 third-party API, but it does not warn that this data leaves the local environment and may contain personal information. This can lead to unintentional disclosure of shipment metadata and partial personal data, especially when an agent forwards user-provided tracking details automatically.

Missing User Warnings

Medium
Confidence
89% confidence
Finding
The skill sends shipment tracking numbers, courier identifiers, and possibly phone numbers to a third-party API service without any visible consent flow, notice, or minimization in the code path. While external transmission is necessary for the feature, these fields are sensitive logistics data and can expose package status and user-associated information to an external provider without explicit disclosure.

VirusTotal

65/65 vendors flagged this skill as clean.

View on VirusTotal