Parcel Tracking
v1.0.2Erkennt automatisch den Paketdienst (DHL, Hermes, UPS, GLS, Amazon etc.) via Track123-API und ruft Tracking-Informationen ab. Optional PLZ für erweiterte Infos.
⭐ 0· 477·2 current·2 all-time
MIT-0
Download zip
LicenseMIT-0 · Free to use, modify, and redistribute. No attribution required.
Security Scan
OpenClaw
Benign
high confidencePurpose & Capability
Name/description (parcel tracking via Track123) match the runtime instructions and code: the skill runs track.py which POSTs to Track123 endpoints. However registry-level metadata above lists no required env vars or binaries while SKILL.md and track.py require python3 and TRACK123_API_SECRET — that mismatch is an inconsistency to be aware of.
Instruction Scope
SKILL.md directs the agent to run python3 track.py with a tracking number and optional postal code. The script only reads TRACK123_API_SECRET and TRACK123_API_BASE, calls the Track123 API, and prints a JSON result; it does not read unrelated files, other environment variables, or exfiltrate data to unknown endpoints. Behavior stays inside the stated purpose.
Install Mechanism
There is no install spec (instruction-only), so nothing is declared to be installed at runtime. Yet the bundle contains track.py and a full venv with many third-party packages/vendors (requests, urllib3, charset_normalizer, pip vendored libs, etc.). Including a prepacked virtualenv is uncommon here and confusing because SKILL.md runs system python3 without referencing the venv. There are no remote downloads or short/obfuscated URLs in the install; risk is limited but you should review the included packages if you plan to execute them locally.
Credentials
At runtime the skill requires exactly one secret (TRACK123_API_SECRET) and optionally TRACK123_API_BASE; that is proportional to a Track123 integration. The inconsistency is that registry metadata at the top claimed 'Required env vars: none' — SKILL.md and track.py do require the secret, so verify you only supply the Track123 secret (use a least-privilege key).
Persistence & Privilege
always:false and no config-path or cross-skill modifications. The skill does not request permanent system-wide privileges or modify other skills. disable-model-invocation is false (normal) but not combined with other red flags.
Scan Findings in Context
[unicode-control-chars] unexpected: A prompt-injection detector flagged unicode control characters in SKILL.md. There is no functional need for control characters in the skill metadata; this could be accidental (e.g., pasted content) or an attempt to influence text processing. Inspect SKILL.md for invisible characters before trusting the metadata.
Assessment
What to check before installing or running this skill:
- The skill requires a TRACK123_API_SECRET (SKILL.md and track.py); supply only a Track123 API secret and not unrelated credentials. The registry summary incorrectly stated 'none' — prefer the SKILL.md's requirement. Use a minimal / revocable API key if possible.
- The runtime only calls Track123 (default base https://api.track123.com/...). TRACK123_API_BASE can be overridden; confirm the base URL if you are concerned about redirecting requests to other endpoints.
- The bundle includes track.py and a full Python virtualenv (many vendor packages). This is unusual because there is no install step that uses that venv and the skill will run with system python3. If you will run code locally, inspect the included files (especially track.py) and the venv contents or prefer to run in a sandboxed environment.
- The pre-scan found unicode control characters in SKILL.md. Open SKILL.md in a hex/editor to see any invisible characters; remove them if they are unexpected.
- If you want stronger assurance: review track.py (it is short and readable), run it in an isolated container or sandbox, and provide an ephemeral / least-privilege Track123 key you can revoke after testing.
Overall, the behavior and credentials requested are coherent with parcel tracking via Track123, but verify the above inconsistencies and inspect the packaged venv before executing.Like a lobster shell, security has layers — review code before you run it.
latestvk97emxm10yc7mhf7daqsnfcvyh81py4d
License
MIT-0
Free to use, modify, and redistribute. No attribution required.