ClawHub

Chanjing Video Compose

Security checks across malware telemetry and agentic risk

Overview

This is a disclosed Chanjing video API client that stores credentials locally and uploads or downloads user-selected media as part of its intended workflow.

Install only if you are comfortable storing Chanjing credentials in ~/.chanjing/credentials.json. Keep that file private, use the default Chanjing API base unless you control the replacement, and confirm upload file paths, download URLs, output paths, and callback URLs before running commands.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Taint TrackingDirect Taint Flow, Variable-Mediated Taint Flow, Credential Exfiltration Chain
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Findings (3)

Tainted flow: 'CONFIG_FILE' from os.environ.get (line 12, credential/environment) → open (file write)

Medium
Category
Data Flow
Content
def write_config(data):
    CONFIG_DIR.mkdir(parents=True, exist_ok=True)
    with open(CONFIG_FILE, "w", encoding="utf-8") as f:
        json.dump(data, f, indent=2, ensure_ascii=False)
Confidence
91% confidence
Finding
with open(CONFIG_FILE, "w", encoding="utf-8") as f:

Tainted flow: 'req' from os.environ.get (line 77, credential/environment) → urllib.request.urlopen (network output)

Critical
Category
Data Flow
Content
method="POST",
    )
    try:
        with urllib.request.urlopen(req, timeout=30) as resp:
            body = json.loads(resp.read().decode("utf-8"))
    except Exception as e:
        return None, str(e)
Confidence
98% confidence
Finding
with urllib.request.urlopen(req, timeout=30) as resp:

Missing User Warnings

Medium
Confidence
89% confidence
Finding
The examples explicitly demonstrate uploading local audio/background files to a third-party API and downloading generated results to local disk, but they do not warn about outbound data transfer, persistence, or local file writes. In an agent setting, this omission can cause users or orchestrators to trigger network exfiltration of local content and unexpected filesystem writes without informed consent, especially because the skill description encourages explicit download behavior.

VirusTotal

64/64 vendors flagged this skill as clean.

View on VirusTotal