ClawHub

Tianmao

PassAudited by ClawScan on May 10, 2026.

Overview

This is a coherent Tmall shopping assistant that stops before payment, but logged-in cart, coupon, and order-preview automation should be supervised.

Install only if you are comfortable letting the agent browse a logged-in Tmall/Taobao session for shopping preparation. Watch the browser actions, verify item, quantity, coupons, address, and total yourself, and complete payment manually.

Findings (3)

Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.

Low
#ASI02: Tool Misuse and Exploitation
What this means

A mistaken action could add the wrong item, use the wrong coupon, or prepare the wrong order preview, although payment is not automated.

Why it was flagged

The workflow directs browser automation to add selected items to the cart and open checkout/order-preview pages. This is central to the shopping purpose, but it changes account state and should remain user-directed.

Skill content
browser.click(".tb-btn-addcart") ... browser.click(".cart-checkout")
Recommendation

Confirm the exact product, quantity, coupons, address, and total before allowing cart or checkout-preview steps; keep payment manual.

Low
#ASI03: Identity and Privilege Abuse
What this means

The agent may see or act on account-specific shopping details such as cart contents, coupons, 88VIP pricing, and the selected delivery address.

Why it was flagged

The skill expects use of the user's logged-in Taobao/Tmall account for cart, coupon, discount, and delivery-address steps. It also asks before login, so this is disclosed and purpose-aligned.

Skill content
Cart Phase (⚠️ Requires login) ... "请确认是否继续?" ... Add to cart ... Apply 店铺券, 平台券, 88VIP discounts ... Select address
Recommendation

Only log in when needed, monitor the browser session, and avoid sharing more account or address information than necessary.

Info
#ASI04: Agentic Supply Chain Vulnerabilities
What this means

It may be harder to tell exactly which release the registry entry represents.

Why it was flagged

The included package files identify version 2.0.0, while the supplied registry metadata reports version 1.2.3. This is a minor provenance/versioning inconsistency, not evidence of malicious behavior.

Skill content
"version": "2.0.0"
Recommendation

The publisher should align registry and package versions; users can review the installed files before relying on the skill.