Xiangshan Douyin

Security checks across malware telemetry and agentic risk

Overview

This is a disclosed Douyin data API helper that sends user-provided Douyin queries and an XSData API key to its stated external API provider.

Install only if you trust the XSData service and are comfortable sending Douyin links, IDs, search terms, and your XS_API_KEY to api.xsdata.top. Prefer setting the key in an environment variable, avoid pasting secrets into chat, and remember that API calls may consume paid credits.

SkillSpector

By NVIDIA

Vulnerability Patterns

Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep

Findings (13)

Missing User Warnings

Medium

Confidence: 91% confidence
Finding: The skill explicitly instructs the agent to obtain an API key from an environment variable or directly from the user and then transmit it to a third-party service, but it does not provide a clear warning about secret handling, storage, or trust boundaries. This creates a real risk of unnecessary secret collection and disclosure, especially if users are prompted to paste credentials into chat or if the execution environment is shared.

Missing User Warnings

Medium

Confidence: 91% confidence
Finding: The skill instructs the agent to source an API key from an environment variable or directly from the user, then transmit it to a third-party service, but it does not explicitly warn the user that the credential will be sent off-platform or advise on safe handling. This creates a real credential-handling risk because users may disclose sensitive keys without informed consent, and the agent may propagate secrets to an external domain without clear trust boundaries.

Missing User Warnings

Medium

Confidence: 96% confidence
Finding: The skill sends user-provided identifiers (`sec_user_id` or `share_text`) and an API key to a third-party service without an explicit privacy warning or consent step. Because `share_text` may contain personal profile links or metadata and the response returns profile attributes, users may unknowingly disclose personal data to an external processor.

Missing User Warnings

Medium

Confidence: 89% confidence
Finding: The skill instructs the agent to send user-supplied Douyin identifiers or share links, along with an API key, to a third-party service without an explicit upfront notice that this data will leave the local environment. This creates a real privacy and credential-handling risk because users may not realize their inputs and secrets are being transmitted to an external provider, especially when the API key may be interactively requested from the user.

Missing User Warnings

Medium

Confidence: 94% confidence
Finding: The skill instructs the agent to read an API key from the environment or ask the user for it, then send that credential to a third-party endpoint without an explicit warning, consent step, or trust boundary disclosure. This creates a real risk of credential exposure and unintended use of user or system secrets, especially in an agent setting where users may not realize the key will be transmitted off-platform.

Missing User Warnings

Medium

Confidence: 90% confidence
Finding: The skill explicitly instructs the agent to read an API key from an environment variable and transmit it to an external third-party endpoint, but it does not require clear user consent, destination disclosure, or safeguards around credential handling. This creates a real risk of unintended secret exfiltration or use of privileged credentials in a context the user may not expect.

External Transmission

Medium

Category: Data Exfiltration
Content: 1. 从 $ARGUMENTS 中解析参数。如果参数不完整，向用户询问缺失的必填参数。 2. 读取 API Key：优先从环境变量 `XS_API_KEY` 获取，如果未设置则向用户询问。 3. 使用 curl 调用接口： ```bash curl -s --location 'https://api.xsdata.top/api/v1/goa/douyin/fetch-user-data' \
Confidence: 95% confidence
Finding: curl 调用接口： ```bash curl -s --location 'https://api.xsdata.top/api/v1/goa/douyin/fetch-user-data' \ --header 'x-api-key: <api_key>' \ --header 'Content-Type: application/json' \ --data

External Transmission

Medium

Category: Data Exfiltration
Content: 3. 使用 curl 调用接口： ```bash curl -s --location 'https://api.xsdata.top/api/v1/goa/douyin/fetch-user-data' \ --header 'x-api-key: <api_key>' \ --header 'Content-Type: application/json' \ --data '{
Confidence: 90% confidence
Finding: https://api.xsdata.top/

External Transmission

Medium

Category: Data Exfiltration
Content: 1. 从 $ARGUMENTS 中解析参数。如果参数不完整，向用户询问缺失的必填参数。 2. 读取 API Key：优先从环境变量 `XS_API_KEY` 获取，如果未设置则向用户询问。 3. 使用 curl 调用接口： ```bash curl -s --location 'https://api.xsdata.top/api/v1/goa/douyin/fetch-video-comment' \
Confidence: 85% confidence
Finding: curl 调用接口： ```bash curl -s --location 'https://api.xsdata.top/api/v1/goa/douyin/fetch-video-comment' \ --header 'x-api-key: <api_key>' \ --header 'Content-Type: application/json' \ --data

External Transmission

Medium

Category: Data Exfiltration
Content: 3. 使用 curl 调用接口： ```bash curl -s --location 'https://api.xsdata.top/api/v1/goa/douyin/fetch-video-comment' \ --header 'x-api-key: <api_key>' \ --header 'Content-Type: application/json' \ --data '{
Confidence: 80% confidence
Finding: https://api.xsdata.top/

External Transmission

Medium

Category: Data Exfiltration
Content: 1. 从 $ARGUMENTS 中解析参数。如果参数不完整，向用户询问缺失的必填参数。 2. 读取 API Key：优先从环境变量 `XS_API_KEY` 获取，如果未设置则向用户询问。 3. 使用 curl 调用接口： ```bash curl -s --location 'https://api.xsdata.top/api/v1/goa/douyin/fetch-video-detail' \
Confidence: 91% confidence
Finding: curl 调用接口： ```bash curl -s --location 'https://api.xsdata.top/api/v1/goa/douyin/fetch-video-detail' \ --header 'x-api-key: <api_key>' \ --header 'Content-Type: application/json' \ --data

External Transmission

Medium

Category: Data Exfiltration
Content: 1. 从 $ARGUMENTS 中解析参数。如果参数不完整，向用户询问缺失的必填参数。 2. 读取 API Key：优先从环境变量 `XS_API_KEY` 获取，如果未设置则向用户询问。 3. 使用 curl 调用接口： ```bash curl -s --location 'https://api.xsdata.top/api/v1/goa/douyin/fetch-video-statistics' \
Confidence: 88% confidence
Finding: curl 调用接口： ```bash curl -s --location 'https://api.xsdata.top/api/v1/goa/douyin/fetch-video-statistics' \ --header 'x-api-key: <api_key>' \ --header 'Content-Type: application/json' \ --data

External Transmission

Medium

Category: Data Exfiltration
Content: 3. 使用 curl 调用接口： ```bash curl -s --location 'https://api.xsdata.top/api/v1/goa/douyin/fetch-video-statistics' \ --header 'x-api-key: <api_key>' \ --header 'Content-Type: application/json' \ --data '{
Confidence: 84% confidence
Finding: https://api.xsdata.top/

VirusTotal

64/64 vendors flagged this skill as clean.

View on VirusTotal