Skill flagged — suspicious patterns detected
ClawHub Security flagged this skill as suspicious. Review the scan results before using.
商务用车
v1.0.0企业用车服务助手,支持即时用车、预约用车、接送机、包车等多种用车场景,提供车型选择、费用预估、订单管理等功能。Invoke when user needs to book a car, schedule a ride, airport transfer, or manage car service orders.
⭐ 0· 30·0 current·0 all-time
MIT-0
Download zip
LicenseMIT-0 · Free to use, modify, and redistribute. No attribution required.
Security Scan
OpenClaw
Suspicious
medium confidencePurpose & Capability
The SKILL.md explicitly requires calling real ride‑hailing/platform APIs and forbids fabricating prices or vehicle info, yet the included Python code (car_service_api.py) simulates distances/prices using random values and a local driver DB rather than integrating with any external service. The skill declares no environment variables or primary credential for platform API keys, which does not match the stated need to call real platform APIs.
Instruction Scope
SKILL.md contains a hard constraint that the agent 'must call real platform API' and 'must not fabricate prices', but the runtime adapter (openai_adapter.py) maps OpenAI function calls to local CarServiceApi functions that operate entirely locally. The SKILL.md also triggered a 'unicode-control-chars' pre-scan finding (possible prompt‑injection), which suggests the instruction text may contain control characters intended to affect prompting or evaluation. The instructions give the agent authority to call functions but do not declare or constrain any external endpoints or credentials.
Install Mechanism
No install spec or external downloads are present; the skill is instruction‑only plus included Python scripts. Required binary is python3 which is appropriate for the provided code. There are no high‑risk install actions detected.
Credentials
The skill claims it must call real platform APIs but declares no required environment variables or API keys. A real integration would normally require API endpoints and credentials (API_KEY, SECRET, etc.). The absence of declared env vars or config paths is inconsistent with the stated need to contact external ride‑platform services.
Persistence & Privilege
The skill does not request always:true, does not declare system config paths, and does not request elevated persistence. It appears to run as a normal, user‑invocable skill.
Scan Findings in Context
[unicode-control-chars] unexpected: Control/unicode injection characters in SKILL.md are not expected for a ride‑booking assistant and may be used to manipulate prompt processing or evaluation. The presence of such characters is suspicious and should be removed or explained.
What to consider before installing
This skill's description says it must call real ride‑platform APIs and must not fabricate prices, but the included Python code uses simulated data (random distances, local driver DB) and there are no declared API endpoints or credentials. That mismatch is the primary risk: either the SKILL.md is outdated/incorrect, or the code is incomplete and may be swapped to call external services later. Actionable steps before installing or enabling: 1) Ask the developer to clarify which external platform(s) will be contacted and provide the exact endpoints and required environment variables (API keys/secrets). 2) Require the SKILL.md to match the code (if it truly must call external APIs, the code should include explicit, reviewable network calls and declare required credentials). 3) Remove any unicode/control characters from SKILL.md and re-run a security review. 4) Review the full, untruncated source for any network I/O or obfuscated code; run the skill in an isolated sandbox if you must test it. 5) Never provide platform API keys or other secrets until you confirm the endpoints, the owner identity, and that the code explicitly and safely uses them. Given the inconsistencies and the prompt‑injection signal, treat this skill as untrusted until the developer resolves them.Like a lobster shell, security has layers — review code before you run it.
latestvk974vcx57k5k186810339m0xyx83zr97
License
MIT-0
Free to use, modify, and redistribute. No attribution required.
Runtime requirements
🚗 Clawdis
Binspython3