ClawHub

Douyin Creator Marketplace (Xingtu) KOL Comment Keyword Analysis API

Security checks across malware telemetry and agentic risk

Overview

This is a narrow JustOneAPI wrapper for one Douyin/Xingtu lookup endpoint, with a real token-handling caveat but no evidence of hidden or unrelated behavior.

Install only if you trust JustOneAPI and are comfortable with JUST_ONE_API_TOKEN being sent in the URL query string for this API. Avoid sharing request URLs, terminal logs, screenshots, or error output that may include the token, and rotate the token if it may have been exposed.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
  • Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
Findings (2)

Missing User Warnings

Medium
Confidence
98% confidence
Finding
The skill defines the authentication token as a query parameter and later appends all query parameters directly into the URL. Query-string credentials are commonly exposed through logs, browser/history surfaces, proxies, monitoring tools, and upstream server access logs, making accidental credential disclosure more likely even when HTTPS is used. In this API-wrapper context, the issue is more dangerous because the script explicitly supports passing the secret via CLI and then places it into the request URL.

Missing User Warnings

Medium
Confidence
92% confidence
Finding
The manifest requires a raw authentication token as a query parameter but provides no user-facing warning about how that credential is handled, transmitted, or protected. Query-string credentials are especially risky because they may be logged by clients, proxies, analytics systems, and server infrastructure, increasing the chance of accidental token exposure and unauthorized API access.

VirusTotal

65/65 vendors flagged this skill as clean.

View on VirusTotal