ClawHub

Cross-Border-Ecommerce-Product-Picker

Security checks across malware telemetry and agentic risk

Overview

This is a Chinese-language ecommerce research skill that browses public marketplaces and social platforms, with no code execution, credentials, persistence, payments, or account changes.

Install if you want a Chinese-language product research assistant and are comfortable with it browsing public marketplaces and social platforms. Treat sales, BSR, fee, profit estimates, and product links as approximate research leads that need independent verification before business decisions.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Trigger AbuseOverly Broad Trigger, Shadow Command Trigger, Keyword Baiting Trigger
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Findings (2)

Vague Triggers

High
Confidence
94% confidence
Finding
The trigger condition uses broad, everyday phrases such as “帮我选品” and “分析类目”, and even generic category mentions like “选宠物用品”, which can cause the skill to activate outside a clearly intended ecommerce-analysis context. Because the skill also requires browser and web_search access and prescribes immediate execution, accidental invocation can lead to unnecessary external browsing, unintended data retrieval, and user confusion or loss of control.

Natural-Language Policy Violations

Medium
Confidence
76% confidence
Finding
Forcing all responses to be in Chinese without checking the user's language preference can create usability and trust problems, especially in a cross-border ecommerce tool that may be used by multilingual users. While not a direct security exploit, it can cause misunderstanding of recommendations, costs, and risk disclosures, which is more concerning here because the skill presents quasi-financial estimates and external links.

VirusTotal

66/66 vendors flagged this skill as clean.

View on VirusTotal