ClawHub

Exchange Rate - 全球货币汇率换算

Security checks across malware telemetry and agentic risk

Overview

This is a straightforward exchange-rate skill, but users should protect the Juhe API key because the script uses plain HTTP and supports local/command-line key entry.

Install only if you are comfortable using a Juhe API key for exchange-rate lookups. Prefer a protected environment variable or secret manager, do not commit scripts/.env, avoid passing the key on the command line, and avoid using the script on untrusted networks unless the endpoint is changed to HTTPS and verified.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Trigger AbuseOverly Broad Trigger, Shadow Command Trigger, Keyword Baiting Trigger
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Findings (4)

Vague Triggers

Medium
Confidence
78% confidence
Finding
The trigger examples include very broad phrases like '查一下汇率' and '汇率多少', which can overlap with ordinary conversation and cause accidental invocation. Misfires can lead to unintended external API calls and unnecessary disclosure of user-provided currency/amount queries to a third party.

Missing User Warnings

Medium
Confidence
88% confidence
Finding
The documentation states that queries are sent to the Juhe third-party exchange-rate API, but it does not prominently warn users that their requested currency pair and amount may be transmitted off-platform. In an agent context, lack of explicit egress notice can violate user expectations and increase privacy/compliance risk.

Missing User Warnings

Medium
Confidence
97% confidence
Finding
The script sends the API key and query parameters to `http://op.juhe.cn/...` over plaintext HTTP GET, which exposes the credential and request contents to interception or modification by any network attacker on the path. Because the key is placed in the URL query string, it may also be logged by proxies, gateways, shell history, or monitoring systems, increasing secret leakage risk.

Credential Access

High
Category
Privilege Escalation
Content
export JUHE_EXCHANGE_KEY=你的AppKey

# 方式二:.env 文件
echo "JUHE_EXCHANGE_KEY=你的AppKey" > scripts/.env

# 方式三:命令行传入
python scripts/exchange_rate.py --key 你的AppKey --from USD --to CNY
Confidence
90% confidence
Finding
.env

VirusTotal

64/64 vendors flagged this skill as clean.

View on VirusTotal