ClawHub

Mobile Phone Number Location Query - 手机号码归属地查询

Security checks across malware telemetry and agentic risk

Overview

This skill does what it claims: it looks up mobile-number attribution through JisuAPI, but users should know the queried number is sent to that provider.

Install this only if you are comfortable sending queried phone numbers to JisuAPI under your JISU_API_KEY. Use a dedicated API key where possible, monitor quota or billing, and avoid looking up numbers you are not authorized or comfortable sharing with the provider.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Trigger AbuseOverly Broad Trigger, Shadow Command Trigger, Keyword Baiting Trigger
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Findings (3)

Vague Triggers

Medium
Confidence
87% confidence
Finding
The activation text uses broad wording such as 'or similar phone-number questions,' which can cause the skill to trigger on loosely related queries and process phone numbers more often than users expect. Because the skill sends the queried number to a third-party service, over-broad invocation raises the chance of unnecessary external disclosure of personal data.

Missing User Warnings

Medium
Confidence
96% confidence
Finding
The markdown instructs the agent to query a third-party API using a phone number, which is personal data, but it does not clearly warn that this information will leave the local environment and be processed by JisuAPI. This omission undermines informed consent and privacy review, especially since users may provide real phone numbers expecting only local interpretation.

Missing User Warnings

Medium
Confidence
92% confidence
Finding
The skill transmits a user's phone number to a third-party service, which is personal data, but provides no explicit notice or consent mechanism before doing so. In this context the external lookup is the core function of the skill, so the issue is not the transmission itself but the lack of transparency and privacy safeguards around sharing user data off-platform.

VirusTotal

63/63 vendors flagged this skill as clean.

View on VirusTotal