ClawHub

德胧通用商旅出行规划助手

Security checks across malware telemetry and agentic risk

Overview

This travel-planning skill is transparent about using travel, map, search, and booking services, with no evidence of hidden execution, destructive behavior, or credential theft.

Install only if you are comfortable sharing trip dates, destinations, meeting locations, budget, and preferences with external map, search, travel, and booking providers. Review the optional MCP packages before enabling them, use scoped Amap API keys, keep generated HTML reports private, and verify booking links and prices before acting.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Trigger AbuseOverly Broad Trigger, Shadow Command Trigger, Keyword Baiting Trigger
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Findings (4)

Vague Triggers

Medium
Confidence
94% confidence
Finding
The activation phrases are broad enough to match ordinary travel-related requests, which can cause the skill to trigger when the user did not explicitly intend to invoke a tool-heavy travel planner. In this skill, unintended activation is more concerning because it may lead to collection of itinerary details and transmission to third-party services, plus generation of booking links and HTML output without clear user consent.

Vague Triggers

Medium
Confidence
93% confidence
Finding
The Markdown trigger list repeats the same issue: generic phrases like route, hotel, budget, or travel planning lack clear boundaries and can match common conversation. Because this skill orchestrates multiple external lookups and creates actionable booking output, accidental invocation increases privacy and safety risk beyond a simple informational skill.

Missing User Warnings

Medium
Confidence
96% confidence
Finding
The skill requires detailed travel data such as cities, dates, employer-related purpose, meeting locations, identity/role, budget, and party size, then sends portions of that data to third-party services like 12306, Amap, and web search. Without an upfront warning and consent flow, users may unknowingly disclose sensitive personal or business travel information, including patterns that could reveal meetings, trade-show attendance, or executive movement.

Missing User Warnings

Medium
Confidence
95% confidence
Finding
The skill generates and returns an HTML file containing external links, but does not clearly warn users that the output is executable browser content rather than plain text. Even if the listed domains are legitimate, HTML output expands the attack surface through link-based phishing, tracking, accidental navigation, and unsafe rendering if any user-controlled fields are inserted without sanitization.

VirusTotal

66/66 vendors flagged this skill as clean.

View on VirusTotal