ClawHub

Aliyun Use

Security checks across malware telemetry and agentic risk

Overview

This skill is a straightforward Aliyun Bailian chat and translation integration, but users should know their prompts and translation text go to Alibaba Cloud or the configured endpoint.

Install only if you are comfortable sending prompts, code snippets, and translation text to Alibaba Cloud Bailian or the endpoint configured in ALIYUN_BAILIAN_API_HOST. Use a dedicated API key and avoid submitting secrets, regulated data, or confidential source code unless that provider is approved for the data.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • MCP Least PrivilegeUnderdeclared Capability, Wildcard Permission, Missing Permission Declaration
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Findings (3)

Lp3

Medium
Category
MCP Least Privilege
Confidence
91% confidence
Finding
The skill declares required environment variables and clearly depends on outbound API calls, but it does not declare explicit permissions for sensitive capabilities like environment access and network use. This weakens user visibility and policy enforcement, making it easier for a skill to access secrets and exfiltrate prompts or other data to a remote service without a clear permission boundary.

Missing User Warnings

Medium
Confidence
95% confidence
Finding
The skill description and usage text do not prominently warn that user chat messages and translation text are transmitted to Alibaba Cloud's DashScope API. Users may unknowingly submit sensitive prompts, source code, credentials, or regulated data to a third-party service, creating confidentiality, compliance, and data-handling risks.

Missing User Warnings

Medium
Confidence
86% confidence
Finding
The skill sends arbitrary chat prompts and translation text to a third-party remote API without any explicit disclosure at the point of use. In agent settings, users may paste secrets, source code, or regulated data, so silent transmission to an external provider creates a real privacy and compliance risk.

VirusTotal

65/65 vendors flagged this skill as clean.

View on VirusTotal