Back to skill

Security audit

Global Package Tracking - 全球物流快递查询

Security checks across malware telemetry and agentic risk

Overview

This skill is a straightforward package-tracking helper, but users should understand that shipment details and optional phone-number suffixes are sent to Juhe.

Install only if you are comfortable sending package tracking numbers, courier codes, and any required phone-number suffix to Juhe for lookup. Prefer setting JUHE_EXPRESS_KEY through your shell or a managed secret, avoid passing keys on the command line, and do not commit scripts/.env if you use it.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • MCP Least PrivilegeUnderdeclared Capability, Wildcard Permission, Missing Permission Declaration
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Findings (4)

Lp3

Medium
Category
MCP Least Privilege
Confidence
80% confidence
Finding
The skill clearly uses environment variables, local file reads, and outbound network access, but those capabilities are not explicitly declared as permissions beyond runtime requirements metadata. This can weaken platform-level review and user understanding of what the skill does, especially because it reads local reference files and sends tracking data to a third-party API.

Missing User Warnings

Medium
Confidence
93% confidence
Finding
The skill instructs collecting the sender's or receiver's phone last 4 digits and transmitting them to a third-party logistics API, but it does not provide an explicit privacy warning, consent step, or data-handling notice. Even partial phone numbers are personal data and, in context with a tracking number and carrier, can increase privacy risk and expose sensitive shipment information.

Missing User Warnings

Medium
Confidence
91% confidence
Finding
The script sends potentially sensitive shipment data to a third-party service, including the tracking number, company code, API key, and in some cases the last 4 digits of sender or receiver phone numbers. Although this is core functionality rather than overtly malicious behavior, users are not clearly warned at the point of use that this data will be disclosed to an external provider, which creates a privacy and data-handling risk.

Credential Access

High
Category
Privilege Escalation
Content
export JUHE_EXPRESS_KEY=你的AppKey

# 方式二:.env 文件(在脚本目录创建)
echo "JUHE_EXPRESS_KEY=你的AppKey" > scripts/.env

# 方式三:每次命令行传入
python scripts/express_track.py --key 你的AppKey 快递单号
Confidence
90% confidence
Finding
.env

VirusTotal

41/41 vendors flagged this skill as clean.

View on VirusTotal

Static analysis

No suspicious patterns detected.