ClawHub

天气查询 - 即刻数据

Security checks across malware telemetry and agentic risk

Overview

This is a coherent weather lookup skill that sends location queries and an API key to the documented JikeAPI weather service, with some credential-handling cautions.

Install only if you are comfortable sending weather lookup locations to JikeAPI and using a JikeAPI AppKey in this skill. Avoid setting JIKE_API_BASE_URL unless you intentionally trust the alternate endpoint, and avoid sharing logs or command traces that may include full request URLs with the AppKey.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Taint TrackingDirect Taint Flow, Variable-Mediated Taint Flow, Credential Exfiltration Chain
  • MCP Least PrivilegeUnderdeclared Capability, Wildcard Permission, Missing Permission Declaration
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Findings (5)

Tainted flow: 'url' from os.environ.get (line 167, credential/environment) → urllib.request.urlopen (network output)

Critical
Category
Data Flow
Content
url = f"{API_BASE_URL}{path}?{urllib.parse.urlencode(params)}"

    try:
        with urllib.request.urlopen(url, timeout=15) as response:
            return json.loads(response.read().decode("utf-8"))
    except urllib.error.HTTPError as exc:
        return {"code": exc.code, "message": f"接口请求失败: HTTP {exc.code}", "data": ""}
Confidence
92% confidence
Finding
with urllib.request.urlopen(url, timeout=15) as response:

Lp3

Medium
Category
MCP Least Privilege
Confidence
84% confidence
Finding
The skill declares runtime requirements for environment variables and clearly instructs execution of a Python script that performs network access, but it does not declare corresponding permissions. This creates a transparency and policy-enforcement gap: the skill can access secrets and make outbound requests without explicit permission metadata, increasing the chance of unintended secret use or unauthorized network activity.

External Transmission

Medium
Category
Data Exfiltration
Content
### 直接调用 API

```text
GET https://api.jikeapi.cn/v1/weather/query/by-area?province=广东省&city=深圳市&area=南山区&appkey=YOUR_APPKEY
GET https://api.jikeapi.cn/v1/weather/query/7d?province=广东省&city=深圳市&appkey=YOUR_APPKEY
GET https://api.jikeapi.cn/v1/weather/query/15d?province=广东省&city=深圳市&appkey=YOUR_APPKEY
```
Confidence
87% confidence
Finding
https://api.jikeapi.cn/

External Transmission

Medium
Category
Data Exfiltration
Content
```text
GET https://api.jikeapi.cn/v1/weather/query/by-area?province=广东省&city=深圳市&area=南山区&appkey=YOUR_APPKEY
GET https://api.jikeapi.cn/v1/weather/query/7d?province=广东省&city=深圳市&appkey=YOUR_APPKEY
GET https://api.jikeapi.cn/v1/weather/query/15d?province=广东省&city=深圳市&appkey=YOUR_APPKEY
```
Confidence
87% confidence
Finding
https://api.jikeapi.cn/

External Transmission

Medium
Category
Data Exfiltration
Content
```text
GET https://api.jikeapi.cn/v1/weather/query/by-area?province=广东省&city=深圳市&area=南山区&appkey=YOUR_APPKEY
GET https://api.jikeapi.cn/v1/weather/query/7d?province=广东省&city=深圳市&appkey=YOUR_APPKEY
GET https://api.jikeapi.cn/v1/weather/query/15d?province=广东省&city=深圳市&appkey=YOUR_APPKEY
```

---
Confidence
87% confidence
Finding
https://api.jikeapi.cn/

VirusTotal

65/65 vendors flagged this skill as clean.

View on VirusTotal