ClawHub

Aliyun Modelstudio Entry Test

Security checks across malware telemetry and agentic risk

Overview

This skill is a disclosed Alibaba Model Studio test helper that makes small external API test calls and stores local result evidence, with no hidden or destructive behavior found.

Install only if you intend to run Alibaba Model Studio test calls. Use sanitized prompts and sample media, avoid secrets or personal/proprietary data, use a limited-purpose API key, review local output files before sharing them, and consider pinning the dashscope SDK version in your environment.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • MCP Tool PoisoningHidden Instructions, Unicode Deception, Parameter Description Injection
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Findings (2)

Intent-Code Divergence

Medium
Confidence
87% confidence
Finding
The workflow says to begin with a 'minimal read-only query,' but most capabilities in the test matrix are generative, editing, or realtime media operations that are not read-only. This mismatch can mislead operators into believing they are performing a safe verification step when they are actually invoking billable, state-changing, or externally transmitting actions against third-party APIs.

Missing User Warnings

Medium
Confidence
91% confidence
Finding
The skill instructs users to run tests across multiple external Model Studio services but does not clearly warn that prompts, images, audio, and related metadata will be sent to third-party APIs and that artifacts and summaries will be stored locally. That omission creates a real risk of unintended data disclosure, especially if operators use sensitive sample media or production-like inputs during validation.

VirusTotal

63/63 vendors flagged this skill as clean.

View on VirusTotal