Taobao Query
Security checks across static analysis, malware telemetry, and agentic risk
Overview
The skill is mostly coherent for Taobao price lookup, but it also gives the agent broad access to an authenticated Taobao MCP session, including cart changes, order viewing, browsing history, and seller chats without clear confirmation boundaries.
Install only if you intend to let the agent interact with your logged-in Taobao desktop session. Keep the MCP server local and trusted, do not configure an unknown remote MCP URL, and require explicit confirmation before cart changes, seller chats, page clicks, or any action beyond simple product search.
Static analysis
No static analysis findings were reported for this release.
VirusTotal
VirusTotal findings are pending for this skill version.
Risk analysis
Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.
The agent could make non-payment changes to the user's Taobao account or send messages from the user's account if it misinterprets a request.
The skill exposes broad browser-like actions and account-mutating Taobao operations. Although payments are prohibited, the artifacts do not clearly require user confirmation before adding items to cart, clicking account pages, entering text, or sending seller messages.
- **navigate_to_url** - Open any URL - **click_element** - Click page element - **input_text** - Input text to fields ... - **add_to_cart** - Add items to cart (safe, no payment) ... - **send_chat_message** - Send additional messages in chat
Only use this skill for explicit Taobao tasks, and require confirmation before add-to-cart, seller messaging, page clicks, or text entry in account areas.
The agent may inherit access to the user's logged-in Taobao account, including private shopping and order information, and may act under the user's identity.
Managing cart/orders and communicating with sellers implies use of the user's authenticated Taobao account, but the metadata declares no primary credential or required configuration and the instructions do not clearly bound account permissions.
This skill enables interacting with Taobao through an MCP (Model Context Protocol) server to query products, manage cart/orders, and communicate with sellers.
Use a trusted local Taobao session, avoid granting access to sensitive accounts unnecessarily, and ensure the agent asks before any action that changes account state or sends messages.
If the MCP URL is misconfigured or points to an untrusted service, Taobao searches, cart/order content, browsing history, and chat actions could be exposed to or controlled by that endpoint.
The skill communicates with an MCP server over plain HTTP and even documents a remote private-network URL option, but does not describe authentication, server identity checks, or data-boundary protections for account data flowing through that endpoint.
**Default MCP Server:** `http://127.0.0.1:3654/mcp` ... "TAOBAO_MCP_URL": "http://192.168.100.20:3654/mcp"
Prefer localhost-only MCP access, do not point the skill at an untrusted remote MCP server, and use network controls or authenticated/secured transport where available.
The safety of the overall integration depends partly on the external Taobao desktop client and MCP service, which were not reviewed here.
The reviewed skill is instruction-only and depends on a separate desktop client/MCP service that is not included in the reviewed files.
1. **Install Taobao Desktop Client** (淘宝桌面版) on your local machine 2. **Enable MCP service** in the client settings
Install the desktop client only from an official trusted source and review its MCP permissions before enabling this skill.