Skill flagged — suspicious patterns detected
ClawHub Security flagged this skill as suspicious. Review the scan results before using.
China company search fengniao
v1.0.0China company search and business registry skill by Fengniao (Riskbird). Supports KYB, supplier verification, company due diligence, corporate risk screening...
⭐ 0· 34·0 current·0 all-time
MIT-0
Download zip
LicenseMIT-0 · Free to use, modify, and redistribute. No attribution required.
Security Scan
OpenClaw
Suspicious
medium confidencePurpose & Capability
Name/description match the included tools.json, reference docs, and client code: the package calls Riskbird/Fengniao endpoints for company search and risk dimensions. Declared capabilities (fuzzy search, B1–D11 etc.) align with the endpoints listed in tools.json and the reference field documents.
Instruction Scope
SKILL.md and SETUP.md instruct the agent to use discover/call and to avoid exposing internal entid. However, the runtime client.call() returns the raw API JSON (which includes entid and other internal IDs) — the code does not enforce the SKILL.md rule to redact entid. Also SKILL.md asks the agent to 'convert English names to Chinese' before using biz_fuzzy_search, but no translation step is implemented in the code. These are functional/instruction mismatches that could lead to unintended data exposure or incorrect queries.
Install Mechanism
No install spec is present; the package is instruction+scripts only. Code is plain JS (Node 18+). There are no remote downloads or archive extracts. Risk from installation is low, but the runtime will execute bundled Node code if the agent runs it.
Credentials
Only one optional env var (FN_API_KEY) is referenced. The package contains a hard-coded built-in public API key (BUILTIN_KEY) used as fallback; this matches SKILL.md. Hardcoding a public key is not necessarily malicious but means requests will run under a shared key (quota, tracking). The client sends credentials as a URL parameter (apikey), which is consistent with the docs but can be observable in logs/refs — worth noting.
Persistence & Privilege
Registry flags show no always:true, and the skill is user-invocable with normal autonomous invocation allowed. The skill does not request to modify other skills, system config, or persist its own settings beyond reading environment and package files.
What to consider before installing
This package appears to implement the advertised China company search functionality and only asks for one optional environment variable (FN_API_KEY). Before installing: (1) be aware a built-in public API key is hard-coded — usage will hit a shared daily quota and may be visible to the service operator; prefer setting your private FN_API_KEY if you have one. (2) The runtime client returns raw API responses (including internal entid values) but SKILL.md requires entid be hidden — ensure the agent or calling code will redact entid before showing output. (3) The skill instructs converting English names to Chinese but provides no automatic translation — expect fuzzy search failures if you pass English names. (4) Running the skill executes Node scripts (Node 18+); review code and test in a controlled environment. These mismatches are likely sloppy design rather than malicious, but they create a risk of accidental data exposure or unexpected quota usage — proceed only after addressing the redaction and key-management points.scripts/client.mjs:2
File read combined with network send (possible exfiltration).
About static analysis
These patterns were detected by automated regex scanning. They may be normal for skills that integrate with external APIs. Check the VirusTotal and OpenClaw results above for context-aware analysis.Like a lobster shell, security has layers — review code before you run it.
latestvk9739519b8b3c2f1vk6jqpsjdn842j0f
License
MIT-0
Free to use, modify, and redistribute. No attribution required.
Runtime requirements
Environment variables
FN_API_KEYrequired