Skill flagged — suspicious patterns detected
ClawHub Security flagged this skill as suspicious. Review the scan results before using.
Trip Booking
v1.0.0Booking.com国际酒店预订助手,支持全球酒店搜索、房型查询、价格对比、预订管理。Invoke when user wants to search international hotels, book hotels on Booking.com, or manage Booking.com reservat...
⭐ 0· 61·0 current·0 all-time
byfenbeitong-trip@gaogao605
MIT-0
Download zip
LicenseMIT-0 · Free to use, modify, and redistribute. No attribution required.
Security Scan
OpenClaw
Suspicious
high confidencePurpose & Capability
The skill claims to be a Booking.com affiliate integration and requires an API key per its SKILL.md, which is appropriate for the purpose. However the code contains hard-coded placeholder BOOKING_API_KEY and BOOKING_AFFILIATE_ID constants and does not declare or read any environment variables or config paths for credentials. That means the runtime behavior is not actually integrated with Booking.com's API as claimed unless someone manually edits the source — an incoherence between claimed purpose and actual capability.
Instruction Scope
SKILL.md explicitly states '必须调用Booking.com Affiliate API' and '禁止自行编造酒店信息、价格或评论', but booking_api.py contains TODO markers and returns simulated/mock hotel/room data in search and detail methods instead of calling the real endpoints. This directly contradicts the stated constraint and grants the skill discretion to supply fabricated data if left as-is.
Install Mechanism
There is no install spec (instruction-only), which limits installation risk. However the package includes executable Python scripts that will run if invoked; running them requires python3 and will make outbound HTTP requests. No third-party packages are declared beyond requests, but the evaluatee should confirm requests is available in the environment.
Credentials
The skill requires an API key per the documentation but declares no required environment variables or primary credential. The code uses plaintext placeholder constants for BOOKING_API_KEY and BOOKING_AFFILIATE_ID rather than reading secure env vars or a config path. That mismatch is disproportionate and risky: a user might be prompted to edit source to insert secrets, or the skill will operate in mock mode without real credentials.
Persistence & Privilege
No special persistence or elevated privileges are requested. always is false and there are no config paths or modifications to other skills. Autonomous invocation is allowed by platform default and is not by itself a concern here.
What to consider before installing
This skill claims to integrate with Booking.com but the shipped code uses placeholder API credentials and returns simulated data in key functions — that contradicts SKILL.md's rule forbidding fabricated info. Before installing or using for real bookings: (1) Do not assume search results are live — verify data before relying on it. (2) Confirm how API credentials are supplied; prefer skills that accept credentials via environment variables or a secure config rather than manual edits to source files. (3) If you need real bookings, request a version that actually makes authenticated requests (no TODO/mock returns) and that documents where to set credentials securely. (4) Inspect network access (the code uses requests and will call distribution-xml.booking.com if implemented). If you cannot verify or fix these issues, avoid using it for production booking/payment workflows.Like a lobster shell, security has layers — review code before you run it.
latestvk97fw2wt7xghvnkv40frqk7nmx83wpay
License
MIT-0
Free to use, modify, and redistribute. No attribution required.
Runtime requirements
🌍 Clawdis
Binspython3