新闻头条 - 聚合数据

Security checks across malware telemetry and agentic risk

Overview

This skill does what it says, but it handles the required Juhe API key in ways that can expose it.

Review before installing. Use a low-privilege or quota-limited Juhe key, prefer an environment variable over --key or scripts/.env, and only use the skill if you are comfortable sending news categories/article IDs and the API credential to Juhe. The main issue is unsafe credential transport over plain HTTP, not hidden or destructive behavior.

SkillSpector

By NVIDIA

Vulnerability Patterns

Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep

Findings (2)

Missing User Warnings

Medium

Confidence: 99% confidence
Finding: The script sends requests to external APIs over plaintext HTTP, including the API key in the query string. This allows network attackers or intermediaries to intercept or modify responses and steal the credential, which is especially risky because the skill is specifically designed to make frequent outbound requests to a third-party service.

Credential Access

High

Category: Privilege Escalation
Content: export JUHE_NEWS_KEY=你的AppKey # 方式二：.env 文件（在脚本目录创建） echo "JUHE_NEWS_KEY=你的AppKey" > scripts/.env # 方式三：每次命令行传入 python scripts/news_headlines.py --key 你的AppKey --type top
Confidence: 72% confidence
Finding: .env

VirusTotal

67/67 vendors flagged this skill as clean.

View on VirusTotal