ClawHub
Skill flagged — suspicious patterns detected

ClawHub Security flagged this skill as suspicious. Review the scan results before using.

Rail Ticket Helper

v1.0.0

分贝通火车预订助手,实时查询火车票、展示车次列表、预订火车票、查看订单、取消订单。Invoke when user wants to search trains, book train tickets, check train orders, or cancel train bookings.

0· 64·0 current·0 all-time
byfenbeitong-trip@gaogao605·duplicate of @gaogao605/trains
MIT-0
Download zip
LicenseMIT-0 · Free to use, modify, and redistribute. No attribution required.
Security Scan
VirusTotalVirusTotal
Suspicious
View report →
OpenClawOpenClaw
Benign
high confidence
Purpose & Capability
The name/description (train search & booking) matches the included code and SKILL.md. The two Python modules implement search/get-detail/create/cancel/order APIs against openapiv2.fenbeitong.com and supporting redirect URLs, which is exactly what the skill claims to do. No unrelated services or credentials are requested.
Instruction Scope
SKILL.md explicitly requires calling functions in scripts/fb_train_api.py and to not fabricate results; the code implements those functions. The instructions do not ask the agent to read unrelated system files or to transmit data to unknown endpoints outside the documented Fenbeitong domains.
Install Mechanism
There is no install spec (lowest-risk pattern) but the shipped Python code uses the 'requests' library while the skill only declares 'python3' as a required binary. The missing dependency declaration (requests) is a coherence/operational issue—installation may fail if the environment lacks that package—but not an indicator of malicious intent.
Credentials
No environment variables or user credentials are requested (declared). The code embeds a hard-coded X-App-Id and EMP_ID and uses them for all API calls; this is coherent with the SKILL.md which documents the App-Id. Users should note the skill will transmit sensitive passenger data (names, ID numbers, phone numbers) to the external Fenbeitong endpoints.
Persistence & Privilege
always is false; the skill does not request persistent system-level privileges or modify other skills. It runs as a normal, user-invocable skill with no elevated platform privileges.
Assessment
The skill appears to implement exactly what it says (search/book/cancel via Fenbeitong APIs). Before installing: (1) verify the publisher/source since homepage is missing and source is 'unknown'; (2) be aware the skill sends passenger PII (names, ID numbers, phones) to https://openapiv2.fenbeitong.com and related Fenbeitong endpoints—only use if you trust that service and have consent to transmit that data; (3) the Python code requires the 'requests' package but the skill does not declare it—ensure your runtime has requests installed; (4) confirm the embedded X-App-Id/EMP_ID are legitimate for your use-case (the skill operates under that app identity); (5) if you need higher assurance, review network requests or run the scripts in an isolated environment and inspect API responses and behavior before using with real passenger data.

Like a lobster shell, security has layers — review code before you run it.

latestvk97fdn6c3deap9djwmkwzw29zs83w5vh

License

MIT-0
Free to use, modify, and redistribute. No attribution required.
Termshttps://spdx.org/licenses/MIT-0.html

Runtime requirements

🚄 Clawdis
Binspython3

Comments