ClawHub

uniqlo(优衣库)-product-query

Security checks across malware telemetry and agentic risk

Overview

This skill does what it claims: queries Uniqlo China sale data and saves a local Markdown report, with no evidence of credential access, hidden services, or destructive behavior.

Install only if you are comfortable with the skill making outbound requests to Uniqlo China and creating Markdown reports in a local unique/ folder. Review or adjust the output location if you run agents inside shared or clutter-sensitive project directories.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Trigger AbuseOverly Broad Trigger, Shadow Command Trigger, Keyword Baiting Trigger
  • MCP Least PrivilegeUnderdeclared Capability, Wildcard Permission, Missing Permission Declaration
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Findings (5)

Lp3

Medium
Category
MCP Least Privilege
Confidence
94% confidence
Finding
The skill declares no permissions while its documented behavior clearly performs network access to Uniqlo's API and writes Markdown files to disk. This mismatch can bypass user and platform expectations, reducing transparency and making unauthorized file creation or external data access more likely when the skill is invoked.

Missing User Warnings

Medium
Confidence
88% confidence
Finding
The README states that the skill writes Markdown files into the current working directory without prominent warning or consent language. In agent environments, unannounced filesystem writes can create persistence, overwrite clutter-sensitive locations, or leak query-derived content into shared workspaces, making this a real safety issue even if the content is not highly sensitive.

Vague Triggers

Medium
Confidence
86% confidence
Finding
The activation text uses broad shopping terms such as sales, discounts, promotions, and special offers, which can cause the skill to trigger outside a narrowly scoped Uniqlo-discount intent. Over-broad triggering increases the chance of unintended network calls and file writes in response to generic shopping requests.

Missing User Warnings

Medium
Confidence
92% confidence
Finding
The skill states that it generates and saves Markdown files but does not prominently warn that files are written into the current working directory under `unique/`. Silent file creation can surprise users, clutter project directories, overwrite expected artifacts, or create privacy and operational issues in shared or automated environments.

Missing User Warnings

Medium
Confidence
83% confidence
Finding
The skill writes a report file to a local directory automatically, without explicit user confirmation or a clear warning that data will be persisted on disk. In an agent environment, silent file creation can violate user expectations, leak shopping interests to other local users/processes, and create unwanted durable artifacts.

VirusTotal

64/64 vendors flagged this skill as clean.

View on VirusTotal