fangcloud-api skills

Security checks across malware telemetry and agentic risk

Overview

This Fangcloud skill matches its stated cloud-file purpose, but it gives an agent broad file/admin power, runs an unverified downloaded CLI, and includes real-looking bearer tokens in its API docs.

Install only if you trust the publisher and Fangcloud release host. Use a least-privilege user token, avoid setting an admin token unless you truly need admin APIs, verify or pin the downloaded CLI before running it, and manually confirm any upload, download, share, collection, invite, delete, move, or admin action.

SkillSpector

By NVIDIA

Vulnerability Patterns

Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
MCP Tool PoisoningHidden Instructions, Unicode Deception, Parameter Description Injection
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code

Findings (28)

Intent-Code Divergence

Medium

Confidence: 96% confidence
Finding: The documentation states a file-delete endpoint but shows a curl example targeting a folder deletion URL instead. This can cause consumers or downstream agents to invoke the wrong destructive API and delete the wrong resource type, creating integrity and availability risk for stored content.

Intent-Code Divergence

Medium

Confidence: 97% confidence
Finding: The permanent file-deletion section documents a file trash-deletion API but the example calls the folder trash-deletion URL. Because this operation is irreversible, inconsistent documentation materially increases the risk of accidental permanent deletion of the wrong resource type.

Intent-Code Divergence

Medium

Confidence: 95% confidence
Finding: The file-move section shows a folder move URL in the sample request, contradicting the declared file endpoint. This can lead integrators or automated agents to move folders instead of files, causing unintended reorganization or exposure of larger data sets than intended.

Intent-Code Divergence

Medium

Confidence: 96% confidence
Finding: The restore-from-trash example for files points to a folder restore URL rather than the documented file restore path. In a recovery workflow, this mismatch can restore the wrong object type and lead to unintended data resurfacing or failed recovery of the intended file.

Intent-Code Divergence

Medium

Confidence: 96% confidence
Finding: The file-update section provides a folder update URL in the curl example instead of the stated file update path. This can cause unauthorized or accidental modification of folder metadata when users intend to update a file, especially in automated tooling that copies examples verbatim.

Missing User Warnings

Low

Confidence: 91% confidence
Finding: The skill explicitly describes downloading remote file content and saving it to local disk, but it does not require an explicit user-facing confirmation or warning before writing files locally. This can lead to unintended local persistence of sensitive or untrusted content, especially in an agent setting where users may not realize a cloud operation results in local filesystem changes.

Missing User Warnings

Medium

Confidence: 95% confidence
Finding: The skill instructs uploading local files to a cloud service without an explicit privacy, data-transfer, or consent warning. In practice, this can cause accidental exfiltration of sensitive local files if the user does not fully understand that the action moves data from the local environment into a third-party cloud platform.

Missing User Warnings

Medium

Confidence: 96% confidence
Finding: The skill includes creating external share links but does not prominently warn about potential data exposure, link scope, or whether the link may be publicly accessible. This creates a real risk of unintended disclosure if a user generates a share link for sensitive files without understanding the access implications.

Missing User Warnings

Medium

Confidence: 89% confidence
Finding: The documentation presents irreversible deletion behavior without a prominent safety warning, confirmation guidance, or rollback limitations. In agentic or copy-paste usage, this increases the chance that users execute permanent deletion commands without understanding the impact.

Missing User Warnings

Medium

Confidence: 98% confidence
Finding: The document includes many credentialed API examples, several with bearer tokens embedded directly in sample commands, but provides no token-handling or privacy guidance. This encourages unsafe practices such as hardcoding secrets into docs, prompts, scripts, logs, or chat histories, increasing the risk of credential leakage and unauthorized access.

External Transmission

Medium

Category: Data Exfiltration
Content: | `id` | `path` | `int64` | 文件的ID | | `target_folder_id` | `body` | `int64` | 目标文件夹id | **Curl Command**: ```bash curl --location --request POST 'https://open.fangcloud.com/api/v2/file/75003907526/copy' \
Confidence: 99% confidence
Finding: Curl Command**: ```bash curl --location --request POST 'https://open.fangcloud.com/api/v2/file/75003907526/copy' \ --header 'Authorization: Bearer 583fad43-3265-45df-9e13-91fa5a22a2ca' \ --header 'Co

External Transmission

Medium

Category: Data Exfiltration
Content: | `id` | `path` | `int64` | 文件的ID | | `target_folder_path` | `body` | `string` | 路径名，以/划分文件夹，根目录在个人文件下，文件夹名称必须是1到222个字符，并且不能含有/ ? : \* " > < | **Curl Command**: ```bash curl --location --request POST 'https://open.fangcloud.com/api/v2/file/75003907526/copy_by_path' \
Confidence: 99% confidence
Finding: Curl Command**: ```bash curl --location --request POST 'https://open.fangcloud.com/api/v2/file/75003907526/copy_by_path' \ --header 'Authorization: Bearer 583fad43-3265-45df-9e13-91fa5a22a2ca' \ --he

External Transmission

Medium

Category: Data Exfiltration
Content: | `parentFolderId` | `body` | `int64` | 父文件夹Id | | `type` | `body` | `string` | 文件类型；1：doc类型; 2：ppt类型; 3：xls类型 | **Curl Command**: ```bash curl --location --request POST 'https://open.fangcloud.com/api/v2/file/create_blank_file' \
Confidence: 99% confidence
Finding: Curl Command**: ```bash curl --location --request POST 'https://open.fangcloud.com/api/v2/file/create_blank_file' \ --header 'Content-Type: application/json' \ --header 'Authorization: Bearer a2a192e

External Transmission

Medium

Category: Data Exfiltration
Content: | `id` | `path` | `int64` | 移动文件的ID | | `target_folder_id` | `body` | `int64` | 目标文件夹id | **Curl Command**: ```bash curl --location --request POST 'https://open.fangcloud.com/api/v2/folder/179000000087/move' \
Confidence: 99% confidence
Finding: Curl Command**: ```bash curl --location --request POST 'https://open.fangcloud.com/api/v2/folder/179000000087/move' \ --header 'Authorization: Bearer d8ec3bc7-c7f2-40b6-a591-7b03c134478f' \ --hea

External Transmission

Medium

Category: Data Exfiltration
Content: | `name` | `body` | `string` | 文件名称，文件名称必须是1到222个字符，并且不能含有/ ? : \* " > < \\ | | `upload_type` | `body` | `string` | 上传类型；固定传api | **Curl Command**: ```bash curl --location --request POST 'https://open.fangcloud.com/api/v2/file/75003685568/new_version_v2' \
Confidence: 99% confidence
Finding: Curl Command**: ```bash curl --location --request POST 'https://open.fangcloud.com/api/v2/file/75003685568/new_version_v2' \ --header 'Content-Type: application/json' \ --header 'Authorization: Beare

External Transmission

Medium

Category: Data Exfiltration
Content: | --- | --- | --- | --- | | `item_typed_ids` | `body` | `array<string>` | 文件id或文件夹id | **Curl Command**: ```bash curl --location --request POST 'https://open.fangcloud.com/api/v2/file/pack_download' \
Confidence: 99% confidence
Finding: Curl Command**: ```bash curl --location --request POST 'https://open.fangcloud.com/api/v2/file/pack_download' \ --header 'Authorization: Bearer 583fad43-3265-45df-9e13-91fa5a22a2ca' \ --header 'Conte

External Transmission

Medium

Category: Data Exfiltration
Content: | --- | --- | --- | --- | | `id` | `path` | `int64` | 更新文件的ID | **Curl Command**: ```bash curl --location 'https://open.fangcloud.com/api/v2/folder/179000000087/update' \
Confidence: 99% confidence
Finding: Curl Command**: ```bash curl --location 'https://open.fangcloud.com/api/v2/folder/179000000087/update' \ --header 'Authorization: Bearer 583fad43-3265-45df-9e13-91fa5a22a2ca' \ --header 'Content-Type

External Transmission

Medium

Category: Data Exfiltration
Content: | `target_folder_path` | `body` | `string` | 路径名，以/划分文件夹，根目录在个人文件下，文件夹名称必须是1到222个字符，并且不能含有/ ? : \* " > < | | `upload_type` | `body` | `string` | 上传类型；固定传api | **Curl Command**: ```bash curl --location --request POST 'https://open.fangcloud.com/api/v2/file/upload_by_path' \
Confidence: 99% confidence
Finding: Curl Command**: ```bash curl --location --request POST 'https://open.fangcloud.com/api/v2/file/upload_by_path' \ --header 'Content-Type: application/json' \ --header 'Authorization: Bearer 003504d9-9

External Transmission

Medium

Category: Data Exfiltration
Content: | `parent_id` | `body` | `int64` | 上传至的文件夹id | | `upload_type` | `body` | `string` | 上传类型；固定传api | **Curl Command**: ```bash curl --location --request POST 'https://open.fangcloud.com/api/v2/file/upload_v2' \
Confidence: 99% confidence
Finding: Curl Command**: ```bash curl --location --request POST 'https://open.fangcloud.com/api/v2/file/upload_v2' \ --header 'Content-Type: application/json' \ --header 'Authorization: Bearer 1cd9081c-aa2c-4

External Transmission

Medium

Category: Data Exfiltration
Content: | `id` | `path` | `int64` | 文件夹id | | `target_folder_id` | `body` | `int64` | 目标文件夹id | **Curl Command**: ```bash curl --location --request POST 'https://open.fangcloud.com/api/v2/folder/179000000087/copy' \
Confidence: 99% confidence
Finding: Curl Command**: ```bash curl --location --request POST 'https://open.fangcloud.com/api/v2/folder/179000000087/copy' \ --header 'Authorization: Bearer 583fad43-3265-45df-9e13-91fa5a22a2ca' \ --header

External Transmission

Medium

Category: Data Exfiltration
Content: | `name` | `body` | `string` | 文件夹名，文件夹名称必须是1到222个字符，并且不能含有/ ? : \* " > < \\ | | `parent_id` | `body` | `int64` | 父文件夹id | **Curl Command**: ```bash curl --location --request POST 'https://open.fangcloud.com/api/v2/folder/create' \
Confidence: 99% confidence
Finding: Curl Command**: ```bash curl --location --request POST 'https://open.fangcloud.com/api/v2/folder/create' \ --header 'Authorization: Bearer 583fad43-3265-45df-9e13-91fa5a22a2ca' \ --header 'Content-Ty

External Transmission

Medium

Category: Data Exfiltration
Content: | --- | --- | --- | --- | | `target_folder_path` | `body` | `string` | 路径名，以/划分文件夹，根目录在个人文件下，文件夹名称必须是1到222个字符，并且不能含有/ ? : \* " > < | **Curl Command**: ```bash curl --location --request POST 'https://open.fangcloud.com/api/v2/folder/create_by_path' \
Confidence: 99% confidence
Finding: Curl Command**: ```bash curl --location --request POST 'https://open.fangcloud.com/api/v2/folder/create_by_path' \ --header 'Authorization: Bearer 583fad43-3265-45df-9e13-91fa5a22a2ca' \ --header 'Co

External Transmission

Medium

Category: Data Exfiltration
Content: | `id` | `path` | `int64` | 文件夹id | | `target_folder_id` | `body` | `int64` | 目标文件夹id | **Curl Command**: ```bash curl --location --request POST 'https://open.fangcloud.com/api/v2/folder/179000000087/move' \
Confidence: 99% confidence
Finding: Curl Command**: ```bash curl --location --request POST 'https://open.fangcloud.com/api/v2/folder/179000000087/move' \ --header 'Authorization: Bearer 583fad43-3265-45df-9e13-91fa5a22a2ca' \ --header

External Transmission

Medium

Category: Data Exfiltration
Content: | --- | --- | --- | --- | | `id` | `path` | `int64` | 文件夹id | **Curl Command**: ```bash curl --location --request POST 'https://open.fangcloud.com/api/v2/folder/179000000087/update' \
Confidence: 99% confidence
Finding: Curl Command**: ```bash curl --location --request POST 'https://open.fangcloud.com/api/v2/folder/179000000087/update' \ --header 'Authorization: Bearer 583fad43-3265-45df-9e13-91fa5a22a2ca' \ --heade

External Transmission

Medium

Category: Data Exfiltration
Content: > 请求示例 **Curl Command**: ```bash curl --location 'https://open.fangcloud.com/api/v2/knowledge/chatStream' \
Confidence: 99% confidence
Finding: Curl Command**: ```bash curl --location 'https://open.fangcloud.com/api/v2/knowledge/chatStream' \ --header 'Content-Type: application/json' \ --header 'Authorization: Bearer de74b292-3dbf-446a-9

VirusTotal

VirusTotal findings are pending for this skill version.

View on VirusTotal