带谁去哪
AdvisoryAudited by VirusTotal on Apr 4, 2026.
Overview
Type: OpenClaw Skill Name: flyai-companion-match Version: 1.0.1 The skill bundle contains instructions in SKILL.md to globally install an external NPM package (@fly-ai/flyai-cli) and explicitly directs the agent to bypass SSL certificate validation by setting NODE_TLS_REJECT_UNAUTHORIZED=0. It also implements a user profiling system that reads and writes sensitive travel preferences to the local filesystem (~/.flyai/user-profile.md). While these capabilities are functionally relevant to the travel assistant's purpose, the intentional disabling of security protocols and the requirement for high-privilege global installations represent significant security vulnerabilities.
Findings (0)
Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.
A travel query could cause a global CLI package to be installed or changed on the user's machine before any search is performed.
The skill requires installing or upgrading an unpinned latest global npm package at runtime, which can change the user's environment and depends on the current npm package contents.
在执行任何搜索之前,**必须先执行安装命令**(无论是否已安装,确保为最新版本):`npm install -g @fly-ai/flyai-cli@latest --registry=https://registry.npmjs.org`
Ask for explicit user approval before installation, pin a reviewed version, prefer a local/scoped install, and declare the binary/install requirement in metadata.
If followed, the installer could modify system-level files with administrator privileges.
The skill recommends using sudo for a package install, which can grant elevated system privileges to the package installation process.
| 权限不足 | 建议使用 `sudo npm install -g @fly-ai/flyai-cli@latest --registry=https://registry.npmjs.org` |
Avoid sudo-based installs for this skill; use a user-local install method or require the user to perform and verify setup outside the agent workflow.
Travel searches and returned recommendations could be intercepted or tampered with on an untrusted network.
The skill explicitly tells the agent to bypass TLS certificate verification when SSL validation fails.
SSL证书验证失败 | 使用 `NODE_TLS_REJECT_UNAUTHORIZED=0` 环境变量绕过
Do not bypass certificate validation; fix the local CA/network issue or ask the user before any insecure retry.
Personal travel preferences and family-related details may be reused later from memory or a local profile file.
The skill reads and can persist travel profile data such as preferences, family composition, budget, and travel history across sessions.
优先尝试 Qoder Memory(search_memory / update_memory)... 降级使用本地文件 ... 用户确认后:Qoder 环境:调用 update_memory 更新;非 Qoder:更新 ~/.flyai/user-profile.md 文件
Review what is saved, avoid storing sensitive medical or family details unless necessary, and keep the profile file or memory entries editable/deletable.