ClawHub

amap-maps

Security checks across malware telemetry and agentic risk

Overview

This is a straightforward Amap maps command-line skill that sends requested map and location queries to Amap using a disclosed API key.

Install only if you intend to use Amap services. Use a dedicated Amap API key, avoid exposing it in logs or shared terminals, and do not submit home, customer, internal, or sensitive travel-location data unless you are comfortable sharing it with Amap.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • MCP Least PrivilegeUnderdeclared Capability, Wildcard Permission, Missing Permission Declaration
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Findings (4)

Lp3

Medium
Category
MCP Least Privilege
Confidence
93% confidence
Finding
The skill metadata declares required environment variables and clearly describes calling external Amap services, but it does not declare corresponding permissions for network and environment access. This creates a transparency and consent gap: hosts or users may not realize the skill can read secrets from the environment and send data to a third-party service.

Missing User Warnings

Medium
Confidence
95% confidence
Finding
The skill supports IP geolocation, geocoding, route planning, and POI search, all of which can transmit sensitive location data, addresses, or IP addresses to Amap. Without a privacy warning, users may unknowingly disclose personal or operationally sensitive location information to a third-party provider.

Missing User Warnings

Low
Confidence
88% confidence
Finding
The setup instructions tell users to export an API key but provide no warning about protecting it from shell history, shared terminals, CI logs, or screenshots. This increases the chance of accidental credential exposure, which could enable unauthorized use of the Amap account or quota exhaustion.

Missing User Warnings

Medium
Confidence
88% confidence
Finding
The script sends user-provided addresses, coordinates, search terms, and IP addresses to an external service at mcp.amap.com. Even though this is expected for a maps integration, the code provides no explicit notice, consent step, or data-minimization controls, so users may unknowingly disclose sensitive location data to a third party.

VirusTotal

63/63 vendors flagged this skill as clean.

View on VirusTotal