ClawHub

调用百度地图api功能

Security checks across malware telemetry and agentic risk

Overview

The Baidu Maps skill is a coherent API-integration helper, with privacy and credential-handling caveats that users should understand before use.

Install only if you are comfortable sending map queries, addresses, coordinates, and any requested IP geolocation data to Baidu. Store BAIDU_MAP_AK as a secret environment variable, avoid printing it in logs or prompts, and do not use IP-based location unless the user clearly asked for it.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Trigger AbuseOverly Broad Trigger, Shadow Command Trigger, Keyword Baiting Trigger
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Findings (5)

Vague Triggers

Medium
Confidence
84% confidence
Finding
The README says the system will 'automatically use' the Baidu Map API for location-related requests, but it does not define clear activation boundaries, consent requirements, or scope limits. In an agent setting, overly broad auto-activation can cause unintended data sharing, surprising tool invocation, and privacy-impacting requests without the user's explicit intent.

Missing User Warnings

Medium
Confidence
93% confidence
Finding
Advertising IP-based geolocation without any privacy warning omits an important disclosure: IP lookup processes location-related personal data and may reveal approximate user location to a third-party service. In a mapping skill, this is contextually plausible functionality, but the lack of warning and consent guidance makes accidental privacy violations more likely.

Missing User Warnings

Low
Confidence
81% confidence
Finding
The README instructs users to export an API key but does not mention that the key is a secret credential that must be protected from logs, screenshots, commits, and shared environments. This omission can lead to credential leakage, unauthorized API use, quota exhaustion, or billing abuse if operators handle the key unsafely.

Missing User Warnings

Medium
Confidence
95% confidence
Finding
The skill documents IP geolocation without warning that sending an IP address to Baidu transmits personal or location-related data to a third party. Because the endpoint can also infer location from the current client IP when no IP is provided, users may unintentionally disclose sensitive location information.

Missing User Warnings

Medium
Confidence
94% confidence
Finding
The skill instructs users to set and use BAIDU_MAP_AK but does not warn that it is a sensitive credential that must not be exposed in logs, prompts, screenshots, or output. In agent environments, secrets are often mishandled through verbose debugging or command echoing, which can lead to API key theft and unauthorized use.

VirusTotal

60/60 vendors flagged this skill as clean.

View on VirusTotal