ClawHub

海康云眸设备控制

Security checks across malware telemetry and agentic risk

Overview

This Hik-Cloud camera-control skill matches its stated purpose, but it needs review because it can run high-impact device actions and caches access tokens without strong safety controls.

Install only if you are comfortable letting an agent control real Hik-Cloud security devices. Use least-privileged credentials, keep the token cache protected or disabled where possible, restrict base URLs to trusted endpoints, and require manual confirmation before storage initialization, capture, PTZ movement, arm/disarm, OSD, or time/NTP changes.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Trigger AbuseOverly Broad Trigger, Shadow Command Trigger, Keyword Baiting Trigger
  • MCP Tool PoisoningHidden Instructions, Unicode Deception, Parameter Description Injection
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Findings (5)

Missing User Warnings

Medium
Confidence
95% confidence
Finding
The documentation exposes a storage-card initialization operation without any warning that initialization is destructive and may erase recordings or other retained data. In this device-management context, that omission is dangerous because an agent could invoke the command as a routine maintenance step and cause irreversible loss of surveillance evidence or operational data.

Missing User Warnings

Medium
Confidence
88% confidence
Finding
The documentation states that remote capture returns a `data.picUrl` valid for about 2 hours, but it does not warn that the URL may expose sensitive visual data from cameras if logged, shared, cached, or displayed to unauthorized users. In a device-control skill for surveillance infrastructure, omission of privacy and access-handling guidance increases the risk of accidental disclosure of camera images.

Missing User Warnings

Medium
Confidence
95% confidence
Finding
This documentation describes a storage card initialization operation but does not warn that initialization is typically destructive and may erase recordings or other data on the device's storage media. In a device-control skill, omission of this warning can mislead an agent or user into invoking the action without understanding the data-loss risk, increasing the chance of accidental destructive operations.

Missing User Warnings

Medium
Confidence
89% confidence
Finding
The script persists bearer access tokens to a predictable local cache file under the user's home directory without setting restrictive permissions or warning the user. If another local user, process, backup system, or malware can read that file, the token can be reused to control devices through the Hik-Cloud API until expiration.

Missing User Warnings

High
Confidence
95% confidence
Finding
The skill exposes a storage card initialization operation, which is inherently destructive, without any confirmation gate, dry-run mode, or explicit safety warning. In an agent skill context, a mistaken invocation or prompt injection chain could trigger irreversible device data loss on remote storage media.

VirusTotal

65/65 vendors flagged this skill as clean.

View on VirusTotal