ClawHub

travel-schedule-brainstrom

Security checks across malware telemetry and agentic risk

Overview

This Chinese travel-planning skill is mostly coherent, but it should be reviewed because its FlyAI examples disable TLS certificate checks for online travel searches.

Review before installing. The travel workflow itself is coherent, but do not run the FlyAI commands with NODE_TLS_REJECT_UNAUTHORIZED=0; fix certificate or proxy trust problems instead, and only share travel details with FlyAI if you trust that CLI and service.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
  • MCP Tool PoisoningHidden Instructions, Unicode Deception, Parameter Description Injection
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Findings (3)

Context-Inappropriate Capability

Medium
Confidence
98% confidence
Finding
The skill explicitly instructs operators to disable TLS certificate verification via NODE_TLS_REJECT_UNAUTHORIZED=0 for networked travel queries. This enables man-in-the-middle interception or tampering with hotel, POI, and flight responses, which is dangerous because the skill handles externally sourced travel data that users may trust for purchases or planning.

Intent-Code Divergence

Medium
Confidence
97% confidence
Finding
Presenting certificate-verification bypass as an acceptable operational step normalizes insecure transport for a network-dependent skill. In this context, integrity and authenticity of travel search results matter because manipulated prices, destinations, or booking-related data could mislead users or expose sensitive itinerary information.

Missing User Warnings

High
Confidence
99% confidence
Finding
The skill directs disabling TLS verification for outbound CLI requests without an adequate, prominent warning or safe fallback. Because the skill performs remote searches and may process potentially sensitive travel parameters, this weakens confidentiality and integrity and makes spoofed or modified responses much easier.

VirusTotal

64/64 vendors flagged this skill as clean.

View on VirusTotal