Skill flagged — suspicious patterns detected
ClawHub Security flagged this skill as suspicious. Review the scan results before using.
中转不浪费
v1.0.1中转不浪费攻略助手。帮用户把中转等待变成免费旅行,找到"中转能顺便玩"的航班方案,自动计算出机场逛一圈的可行性。输入出发地→目的地,AI筛选6-15小时中转航班,生成中转城市半日游攻略+时间安全垫计算。当用户提到"中转航班"、"转机时间长"、"中转能玩吗"、"中转去哪"、"便宜的中转"、"中转不无聊"、"中转顺便...
⭐ 0· 70·0 current·0 all-time
byhello_hang@hello-ahang
MIT-0
Download zip
LicenseMIT-0 · Free to use, modify, and redistribute. No attribution required.
Security Scan
OpenClaw
Suspicious
medium confidencePurpose & Capability
Functionality (searching flights/POI, planning short city tours, visa checks) aligns with the skill description. However the SKILL.md instructs reading/writing a local profile (~/.flyai/user-profile.md) and using platform memory APIs (search_memory/update_memory) even though manifest lists no required config paths or credentials — that mismatch should be explicit in the metadata.
Instruction Scope
Runtime instructions tell the agent to read local files (~/.flyai/user-profile.md), write/update that file, and prefer an internal memory API. They also include an explicit recommendation to set NODE_TLS_REJECT_UNAUTHORIZED=0 to bypass TLS verification when calling the FlyAI CLI — this is a high‑risk instruction that weakens transport security and can enable man‑in‑the‑middle attacks.
Install Mechanism
There is no formal install spec in the manifest, but workflow.md requires running a global npm install: npm install -g @fly-ai/flyai-cli@latest. Installing third‑party CLI code at runtime from npm is a moderate risk, and the skill gives remediation advice that can escalate privileges (sudo) or weaken security (changing npm registry). The manifest should declare this requirement and provide an auditable source URL.
Credentials
The manifest declares no required env vars, yet SKILL.md uses environment variables at runtime (NODE_TLS_REJECT_UNAUTHORIZED) and accesses local files for user profiles. The skill also instructs saving user preferences (which may include sensitive personal travel data) to disk or to platform memory. The data access is plausible for personalization, but lack of explicit config/permissions is a proportionality gap.
Persistence & Privilege
always:false (normal). The skill asks to persist user preferences to Qoder Memory or to ~/.flyai/user-profile.md. Writing its own local config/profile is expected for personalization, but users should be informed and asked before data is stored; the skill does not request system‑wide configuration changes or other skills' credentials.
What to consider before installing
Key things to consider before installing/using: 1) The workflow asks you to run 'npm install -g @fly-ai/flyai-cli@latest' — installing a global CLI runs third‑party code from npm; inspect the package on the npm registry and prefer installing in a controlled environment (or use a container). 2) The instructions explicitly recommend setting NODE_TLS_REJECT_UNAUTHORIZED=0 to bypass TLS verification for SSL errors — do NOT run commands with global TLS verification disabled unless you fully understand and accept the risk. 3) The skill will read and write a local file (~/.flyai/user-profile.md) and may save travel preferences; confirm what data will be stored and whether you want that on disk. 4) The skill references platform memory APIs (search_memory/update_memory) when available — check what memory the platform exposes and who can access it. 5) There is no homepage or source URL listed in the manifest; ask the publisher for the package repository or audit logs before installing. If you proceed, avoid running with elevated privileges (sudo) and consider auditing the installed CLI package or running it in isolation (VM/container).Like a lobster shell, security has layers — review code before you run it.
latestvk979shtn39x6rf9n8dt98px6498444k1
License
MIT-0
Free to use, modify, and redistribute. No attribution required.