ClawHub
Back to skill

Security audit

海康云眸设备通道管理

Security checks across malware telemetry and agentic risk

Overview

This is a disclosed Hik-Cloud device-channel management helper that uses real credentials and can change channel state, but the reviewed behavior matches its stated purpose.

Install only if you want an agent to manage Hik-Cloud device channels with your configured credentials. Use least-privilege credentials, protect or periodically remove the local token cache, avoid passing tokens on the command line, use only trusted base URLs, and verify device serials/channel names before running sync or rename operations.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
  • Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
Findings (2)

Missing User Warnings

Medium
Confidence
83% confidence
Finding
The documentation describes reading client credentials, accepting access tokens, and caching tokens to disk, but it does not warn about secret exposure, local token persistence risks, file permissions, or the danger of supplying tokens on the command line where they may be captured by shell history or process inspection. In a skill that automates authentication, missing these warnings increases the chance of credential leakage and misuse.

Missing User Warnings

Medium
Confidence
80% confidence
Finding
The skill exposes rename and synchronization commands that modify remote cloud/device configuration, but the documentation does not clearly warn users that these are state-changing operations with operational consequences. Without an explicit warning or confirmation requirement, users or higher-level agents may invoke the commands assuming they are read-only, causing unintended changes to device channel names or synchronization state.

VirusTotal

64/64 vendors flagged this skill as clean.

View on VirusTotal