Skillv1.0.1

ClawScan security

经纬度位置查询 - 即刻数据 · ClawHub's context-aware review of the artifact, metadata, and declared behavior.

Scanner verdict

SuspiciousApr 30, 2026, 7:05 AM

Verdict: suspicious
Confidence: medium
Model: gpt-5-mini
Summary: The skill appears to do what it claims (geocode lookups) and only needs a single API key and python, but the script reads an undocumented environment variable (JIKE_API_BASE_URL) and a local .env file which could be used to redirect requests or leak the AppKey; these mismatches merit caution.
Guidance: This skill is coherent with its stated purpose (reverse-geocoding) and only needs python and an AppKey. Before installing or running: (1) ensure you trust the AppKey and the provider (jikeapi.cn); (2) be aware the script sends the AppKey in the URL query string (could be logged by proxies/servers); (3) the script will read a .env file in its directory and will honor JIKE_API_BASE_URL if set — do not set JIKE_API_BASE_URL to an untrusted host (it would receive your AppKey); (4) prefer setting the AppKey in a safe environment variable rather than placing it in shared files; (5) if you need stronger guarantees, ask the publisher to document JIKE_API_BASE_URL and .env behavior (or remove the override) and to switch to sending credentials in headers or POST body to reduce accidental leakage.

Review Dimensions

Purpose & Capability: okName/description (geocode lookup) match the included script and SKILL.md. Requiring python3 and an AppKey (JIKE_MAP_GEOCODE_QUERY_KEY / JIKE_APPKEY) is appropriate and proportionate for calling the provider's API.
Instruction Scope: noteSKILL.md instructs the agent to run the included script with lng/lat and to set the AppKey env var. The script additionally (and not documented in SKILL.md) will: (1) read a .env file located in the script directory for AppKey, and (2) honor an environment variable JIKE_API_BASE_URL to override the API host. These behaviors expand the runtime scope beyond the documentation and could affect where credentials are sent.
Install Mechanism: okNo install spec — instruction-only with a small Python script. Nothing is downloaded or written by an installer. This is the lowest-risk install mechanism.
Credentials: noteThe declared primary env (JIKE_MAP_GEOCODE_QUERY_KEY) matches actual usage. However the script also looks for JIKE_APPKEY (documented) and JIKE_API_BASE_URL (not declared). The AppKey is transmitted as a query parameter in GET requests (expected but increases exposure via logs). Requiring only a single AppKey is proportionate, but the undocumented JIKE_API_BASE_URL allows changing the destination host which could expose the key to an unexpected endpoint.
Persistence & Privilege: okSkill is not always-enabled and does not request persistent system privileges or modify other skills or system settings. It runs as a simple CLI script when invoked.