ClawHub
Back to skill

Security audit

身份证二要素核验 - 聚合数据

Security checks across malware telemetry and agentic risk

Overview

This skill performs the claimed ID verification, but it handles highly sensitive identity data in ways users should review carefully before use.

Install only if users understand that real names and Chinese ID numbers will be sent to Juhe. Prefer a version that uses HTTPS, requires explicit consent before each verification, and redacts raw output so full ID data does not appear in terminal logs, agent transcripts, or saved chat history.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
  • Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
Findings (2)

Missing User Warnings

High
Confidence
98% confidence
Finding
The skill instructs collection of highly sensitive PII—real name and national ID number—and transmission to a third-party service, but does not require an explicit user warning or informed consent at the point of transfer. Because Chinese ID numbers are highly sensitive identifiers, unauthorized or unclear disclosure to an external API creates serious privacy, compliance, and misuse risks, especially if users do not realize their data is leaving the local assistant context.

Missing User Warnings

High
Confidence
97% confidence
Finding
The script sends highly sensitive PII (real name and national ID number) to an external service for verification, but it provides no explicit user consent flow, privacy notice, or data-sharing warning before transmission. Because this data is uniquely identifying and regulated in many jurisdictions, undisclosed third-party transfer materially increases privacy, compliance, and abuse risk.

VirusTotal

64/64 vendors flagged this skill as clean.

View on VirusTotal

Static analysis

No suspicious patterns detected.