ClawHub

Flight Tracker

Security checks across malware telemetry and agentic risk

Overview

The skill does what it claims, but its free AviationStack setup sends the API key and flight lookup over plain HTTP.

Install only if you are comfortable sharing the requested flight number and your AviationStack API key with AviationStack, and with the free-tier API using plain HTTP. Use a dedicated low-value API key, rotate it if exposed, avoid sensitive travel lookups on untrusted networks, and prefer an HTTPS-capable paid plan or alternative provider for production or private use.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Taint TrackingDirect Taint Flow, Variable-Mediated Taint Flow, Credential Exfiltration Chain
  • MCP Least PrivilegeUnderdeclared Capability, Wildcard Permission, Missing Permission Declaration
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Findings (6)

Tainted flow: 'params' from os.environ.get (line 36, credential/environment) → requests.get (network output)

Critical
Category
Data Flow
Content
}
    
    try:
        response = requests.get(base_url, params=params, timeout=10)
        response.raise_for_status()
        return response.json()
    except requests.exceptions.RequestException as e:
Confidence
98% confidence
Finding
response = requests.get(base_url, params=params, timeout=10)

Lp3

Medium
Category
MCP Least Privilege
Confidence
86% confidence
Finding
The skill requires environment variable access for an API key and outbound network access to query AviationStack, but those capabilities are not explicitly declared. Hidden or undeclared capabilities reduce transparency and prevent users or platform controls from making informed trust decisions about secret access and external communications.

Missing User Warnings

Medium
Confidence
92% confidence
Finding
The skill description encourages users to submit flight numbers for lookup but does not clearly disclose that those queries are sent to an external third-party API. Even if flight numbers are not always highly sensitive, travel data can reveal itinerary or association information, so lack of disclosure creates a privacy and consent issue.

Missing User Warnings

High
Confidence
97% confidence
Finding
The documentation explicitly states that the free-tier AviationStack API does not use HTTPS, which means flight queries and the API key may be transmitted in cleartext over the network. This enables interception or modification by network attackers, making both credential exposure and response tampering realistic risks.

Missing User Warnings

Medium
Confidence
91% confidence
Finding
The documentation instructs users to append a long-lived API key directly into their shell profile, which persists the secret in plaintext on disk and increases the chance of accidental exposure through dotfile syncing, backups, screen sharing, or local compromise. While this is a common convenience pattern, omitting any warning or safer alternatives normalizes insecure secret handling and can lead to credential leakage.

Missing User Warnings

Medium
Confidence
99% confidence
Finding
The code transmits an API key to a third-party endpoint without secure transport because the endpoint is explicitly HTTP, not HTTPS. Sending credentials this way can leak them to passive network observers or intermediary systems, making account abuse and data access possible.

VirusTotal

64/64 vendors flagged this skill as clean.

View on VirusTotal