Back to skill

Security audit

上海黄金交易所行情 - 即刻数据

Security checks across malware telemetry and agentic risk

Overview

This skill is a narrow Shanghai Gold Exchange price lookup tool, with a disclosed API-key and network call risk but no hidden or destructive behavior.

Install only if you are comfortable sending queried dates and your JikeAPI AppKey to JikeAPI. Prefer an environment variable over passing the key on the command line, keep any .env file tightly controlled, and consider rotating the key if it appears in logs or shared shell history.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Trigger AbuseOverly Broad Trigger, Shadow Command Trigger, Keyword Baiting Trigger
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Findings (3)

Vague Triggers

Medium
Confidence
80% confidence
Finding
The invocation scope is phrased very broadly as applying to general 'data query, date query, or market query' scenarios, which can cause the agent to trigger this skill outside its intended domain. Over-broad routing increases the chance of unnecessary external calls, accidental data disclosure in prompts, or confusing behavior when unrelated finance/date questions are asked.

Missing User Warnings

Medium
Confidence
95% confidence
Finding
The documentation instructs users to place the API key directly in a GET query string, which can expose credentials through logs, browser history, proxies, analytics systems, or error reports. Even over HTTPS, query parameters are commonly recorded by intermediaries and tooling, making credential leakage more likely.

Missing User Warnings

Medium
Confidence
95% confidence
Finding
The AppKey is placed in the query string, which can be exposed through logs, proxies, browser/history equivalents, monitoring systems, or upstream infrastructure that records full URLs. Even over HTTPS, URL-based credential transmission increases the chance of inadvertent secret leakage compared with sending the key in an Authorization or custom header.

VirusTotal

65/65 vendors flagged this skill as clean.

View on VirusTotal

Static analysis

No suspicious patterns detected.