ClawHub

同花顺问财数据提取器

Security checks across malware telemetry and agentic risk

Overview

This skill appears to do what it says: automate a browser to collect iwencai limit-up stock data, save it locally, and export a report.

Before installing or running, confirm the hard-coded Windows paths, use the documented separate Chrome debugging profile rather than your everyday browser profile, verify that the target site permits your intended scraping, and expect local database and Excel files to be created or updated at the configured paths.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Trigger AbuseOverly Broad Trigger, Shadow Command Trigger, Keyword Baiting Trigger
  • MCP Least PrivilegeUnderdeclared Capability, Wildcard Permission, Missing Permission Declaration
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Findings (3)

Lp3

Medium
Category
MCP Least Privilege
Confidence
95% confidence
Finding
The skill invokes shell commands and browser automation but does not declare permissions or present explicit execution boundaries. This creates a trust gap: an agent may run local commands, connect to a live Chrome debugging session, and write files without the permission model making those capabilities visible to users or enforcement layers.

Vague Triggers

Medium
Confidence
89% confidence
Finding
The trigger keywords are broad enough that the skill may be invoked for loosely related requests about stocks, data extraction, or iwencai, even when the user did not intend browser automation and local data writes. Over-broad activation increases the chance of unintended execution of a powerful workflow involving shell commands, remote debugging, and persistent storage.

Missing User Warnings

Medium
Confidence
93% confidence
Finding
The skill description advertises scraping, SQLite writes, Excel export, and browser/CDP automation but does not clearly warn users that it will control an existing Chrome session and persist data locally. In this context, the missing warning is meaningful because attaching to a debug-enabled browser can expose authenticated content and local writes can create unintended data retention or overwrite risks.

VirusTotal

66/66 vendors flagged this skill as clean.

View on VirusTotal