ClawHub

Lazada Shopping Assistant

Security checks across malware telemetry and agentic risk

Overview

This is a disclosed Lazada shopping helper that uses browser automation to collect public product listings, with some scope and setup caveats but no evidence of hidden or destructive behavior.

Install only if you want an agent to browse Lazada and scrape public search results for recommendations. Prefer built-in browser tools where available, and only install the global agent-browser package or extra OpenClaw browser skill if you trust that tooling. Do not provide Lazada login, payment, or account details to this skill.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
  • Trigger AbuseOverly Broad Trigger, Shadow Command Trigger, Keyword Baiting Trigger
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Findings (3)

Context-Inappropriate Capability

Medium
Confidence
90% confidence
Finding
The skill instructs the agent or user to install and use a global external CLI (`agent-browser`) and even additional platform-specific skills, which expands execution beyond the shopping assistant’s core function into host-level software installation and command execution. This increases supply-chain and environment-manipulation risk because a shopping request could lead to package installation, shell usage, and persistence changes unrelated to answering the user’s query.

Vague Triggers

Medium
Confidence
83% confidence
Finding
The trigger includes broad examples such as 'Looking for ...' that are not reliably scoped to Lazada, so the skill may activate on generic shopping requests and begin browser automation unnecessarily. Overbroad invocation raises the chance of unintended navigation, scraping, and data extraction in contexts where the user did not specifically request Lazada or automated browsing.

Missing User Warnings

Medium
Confidence
91% confidence
Finding
The skill prominently states that it will automatically open a browser and scrape live product data, but it does not require clear pre-invocation disclosure or consent at runtime before performing those actions. In agent environments with browser and MCP access, silent automated browsing can surprise users, leak intent to third-party sites, and create privacy and safety issues through unanticipated external interaction.

VirusTotal

65/65 vendors flagged this skill as clean.

View on VirusTotal