ClawHub

QR Code Generation And Recognition - 二维码生成识别

Security checks across malware telemetry and agentic risk

Overview

This QR code helper does what it says, but QR text or images are processed by the external JisuAPI service.

Install if you want a JisuAPI-backed QR generator/reader and are comfortable sending QR contents or images to that provider. Use a dedicated JisuAPI key, avoid login/payment/private QR codes unless external processing is acceptable, and make sure any missing Python dependency such as requests comes from a trusted package source.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Trigger AbuseOverly Broad Trigger, Shadow Command Trigger, Keyword Baiting Trigger
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Findings (3)

Vague Triggers

Medium
Confidence
84% confidence
Finding
The invocation description is broad enough that the agent may route many QR-related requests to this skill automatically, including cases where users do not expect third-party transmission. Because the skill sends data to JisuAPI, broad triggering increases the chance of oversharing sensitive links, embedded tokens, or image data without clear user awareness.

Missing User Warnings

Medium
Confidence
95% confidence
Finding
The skill description omits a clear warning that QR text, image URLs, or base64 image content are transmitted to a third-party provider for processing. This is dangerous because QR payloads often contain sensitive URLs, login links, tokens, contact data, or internal resources, and users may assume the operation is local.

Missing User Warnings

Medium
Confidence
96% confidence
Finding
The read operation sends user-supplied QR image content or QR image URLs to a third-party service, which can expose sensitive embedded data or uploaded image contents outside the local environment. The code provides no user-facing disclosure, consent gate, or data-minimization control before transmitting potentially private information to api.jisuapi.com.

VirusTotal

60/60 vendors flagged this skill as clean.

View on VirusTotal