ClawHub
Skill flagged — suspicious patterns detected

ClawHub Security flagged this skill as suspicious. Review the scan results before using.

MiniMax MCP Search

v1.0.0

Perform real-time web searches and analyze images using MiniMax MCP with input prompts and flexible image sources.

0· 833·4 current·4 all-time
byHillSP@hillsp99
MIT-0
Download zip
LicenseMIT-0 · Free to use, modify, and redistribute. No attribution required.
Security Scan
VirusTotalVirusTotal
Suspicious
View report →
OpenClawOpenClaw
Suspicious
medium confidence
Purpose & Capability
Name, description, and code align: the skill shells out to the 'mcporter' CLI to perform web_search and understand_image, and the manifest lists mcporter as the required binary/package. Requesting mcporter is coherent with the stated purpose.
!
Instruction Scope
SKILL.md and search.py allow submitting local file paths or URLs for image analysis. The code passes user-supplied strings directly into shell commands (subprocess.run with shell=True) without sanitization, which can enable shell/command injection. Also, sending arbitrary local paths to an external service can cause sensitive-file exfiltration if mcporter/transit is untrusted.
Install Mechanism
_install_ in _meta.json installs the npm package 'mcporter' globally. Installing an npm package is a moderate-risk mechanism (code pulled from the npm registry). This is expected for a tool that invokes an external CLI, but there is an inconsistency: the top-level metadata said 'No install spec — instruction-only', while _meta.json includes an install step. Verify the intended install behavior and the trustworthiness of the 'mcporter' package.
!
Credentials
SKILL.md mentions '首次使用需配置 MiniMax API Key(已在配置文件中设置)' (an API key is required), but the manifest declares no required environment variables or primary credential. The skill therefore expects secrets to be configured externally (e.g., in mcporter config files) but does not declare or document them clearly — an incoherence that can hide where keys are stored and who/what can access them.
Persistence & Privilege
The skill does not request always:true or any special persistent privileges and does not modify other skills or system-wide settings. Autonomous invocation is allowed (default) but not flagged on its own. No other privilege escalation indicators are present.
What to consider before installing
This skill appears to do what it says, but exercise caution before installing or running it: - mcporter install: The skill expects the 'mcporter' CLI (npm package). Only install mcporter if you trust its source; audit the npm package and its maintainers. - API key handling: SKILL.md mentions a MiniMax API key but the manifest doesn't declare any required env vars. Ask or verify where the API key is stored (mcporter config file?) and who/what can access it. - Local file exfiltration risk: The skill accepts arbitrary local file paths for image analysis and forwards them to an external service via mcporter. Do not point it at sensitive files. Consider restricting allowed image paths or running the skill in a sandboxed environment. - Command injection: search.py constructs shell commands by interpolating user input into mcporter calls and uses subprocess.run(..., shell=True). If untrusted input reaches these functions, an attacker could inject shell commands. Prefer sanitized arguments or using subprocess with an argv list (no shell), or otherwise validate and escape inputs. Recommended actions before use: review the mcporter package code and its network behavior; confirm where API keys/configs are stored; avoid using with sensitive local files; and request or patch the skill to avoid shell=True and to declare required credentials explicitly. If you are not comfortable auditing dependencies or running code from this author, treat the skill as untrusted.

Like a lobster shell, security has layers — review code before you run it.

imagevk97bk9kgn7ew1a85zp99sz6c4x81tcj0latestvk97bk9kgn7ew1a85zp99sz6c4x81tcj0mcpvk97bk9kgn7ew1a85zp99sz6c4x81tcj0minimaxvk97bk9kgn7ew1a85zp99sz6c4x81tcj0searchvk97bk9kgn7ew1a85zp99sz6c4x81tcj0

License

MIT-0
Free to use, modify, and redistribute. No attribution required.
Termshttps://spdx.org/licenses/MIT-0.html

Comments