Skill flagged — suspicious patterns detected
ClawHub Security flagged this skill as suspicious. Review the scan results before using.
企业用车
v1.0.0企业用车服务助手,支持即时用车、预约用车、接送机、包车等多种用车场景,提供车型选择、费用预估、订单管理等功能。Invoke when user needs to book a car, schedule a ride, airport transfer, or manage car service orders.
⭐ 0· 35·0 current·0 all-time
MIT-0
Download zip
LicenseMIT-0 · Free to use, modify, and redistribute. No attribution required.
Security Scan
OpenClaw
Suspicious
high confidencePurpose & Capability
SKILL.md repeatedly states the skill 'must call real car platform APIs' and 'must not fabricate prices or vehicle info', but the bundled Python implementation (car_service_api.py) uses simulated driver data and random distance/price calculations and contains no integration points, endpoints, or credential handling. Required binary (python3) is appropriate, but the lack of any declared API credentials or endpoints contradicts the stated purpose.
Instruction Scope
Runtime instructions explicitly require calling external platform APIs, but the SKILL.md also contains unicode-control-chars (pre-scan flagged) which is a prompt-injection indicator. The instructions forbid fabricating data while the implementation fabricates (random distance, local drivers). There are no directives to read system files or unrelated env vars, but the mismatch between instructions and implementation grants the agent leeway to either fabricate results or attempt external network calls without declared guidance.
Install Mechanism
No install spec (instruction-only install) — lowest install risk. Files are pure Python and self-contained; there is no download-from-URL or external package installation specified. The only runtime requirement is python3, which is reasonable.
Credentials
SKILL.md's stated requirement to call real platform APIs implies the need for API endpoints and credentials, but requires.env and primary credential fields are empty. The skill therefore asks for network-capable behavior in prose without declaring or requesting the credentials that real integration would need — an incoherent and potentially risky gap.
Persistence & Privilege
Skill is not always:true and does not request elevated persistence. It does not modify other skills or system-wide configuration. Autonomous invocation is allowed (platform default) but is not combined with other privilege escalations.
Scan Findings in Context
[unicode-control-chars] unexpected: The SKILL.md contained unicode control characters — this is a common prompt-injection pattern. It is not expected for a car-booking skill and should be inspected; it may attempt to influence agent behavior or hide content.
What to consider before installing
This package is inconsistent: its documentation insists on calling a real car-platform API and forbids fabricating prices, but the packaged Python code simulates drivers and prices and asks for no API keys or endpoints. Before installing or enabling this skill, ask the author to clarify how real bookings are performed and where API credentials/endpoints are configured. Specifically: (1) confirm whether the skill will call an external platform and supply the required endpoints and required environment variables (API keys), (2) remove or explain any hidden/unexpected characters in SKILL.md (unicode-control-chars), (3) verify the code actually performs authenticated network calls to the real service (or else update the docs to state it is a local simulator), and (4) run the code in a sandbox and review network activity to ensure it doesn't exfiltrate data. If you expect production booking (real charges, driver assignments), do not use this skill until the integration and credential handling are explicit and audited.Like a lobster shell, security has layers — review code before you run it.
latestvk972d9frgn2cmpdb2rve2r23j583ycn7
License
MIT-0
Free to use, modify, and redistribute. No attribution required.
Runtime requirements
🚗 Clawdis
Binspython3