ClawHub

Almanac / Huangli Inquiry - 黄历查询

Security checks across malware telemetry and agentic risk

Overview

This skill appears to be a straightforward Chinese almanac date lookup that uses a documented JisuAPI key and sends only the requested date to the external API.

Install only if you are comfortable using a JisuAPI AppKey for this lookup. Each query contacts JisuAPI with your key and the requested year, month, and day, which may affect provider logs, quota, or billing.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Trigger AbuseOverly Broad Trigger, Shadow Command Trigger, Keyword Baiting Trigger
  • MCP Least PrivilegeUnderdeclared Capability, Wildcard Permission, Missing Permission Declaration
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Findings (3)

Lp3

Medium
Category
MCP Least Privilege
Confidence
88% confidence
Finding
The skill metadata declares required binaries and an environment variable, and the documented behavior clearly depends on making outbound requests to a third-party API, but there is no explicit permissions declaration covering network/environment access. This creates a transparency and governance gap: reviewers and users may not understand that data leaves the system and that a secret API key is consumed at runtime.

Vague Triggers

Medium
Confidence
84% confidence
Finding
The trigger description includes broad wording like 'or similar almanac date-selection cases', which leaves invocation boundaries ambiguous. Over-broad routing can cause the agent to call the skill on loosely related user requests, unnecessarily transmitting user-supplied dates or context to an external service and producing behavior the user did not intend.

Missing User Warnings

Medium
Confidence
93% confidence
Finding
The documentation says the skill uses a third-party JisuAPI service but does not clearly warn that query parameters, including the requested date, are sent to an external provider. This undermines informed consent and privacy transparency, especially if user queries include contextual information beyond a simple date during tool invocation.

VirusTotal

64/64 vendors flagged this skill as clean.

View on VirusTotal