Security audit

Douyin (TikTok China) Comment Replies API

Security checks across malware telemetry and agentic risk

Overview

This is a narrow JustOneAPI wrapper for one Douyin comment-replies endpoint, but it handles an API token in a way users should treat carefully.

Install only if you trust JustOneAPI and are comfortable with the token being sent in the request URL query string. Use a limited-scope or disposable token where possible, avoid exposing command lines or logs while running it, and rotate the token if it may have been shared.

SkillSpector

By NVIDIA

Vulnerability Patterns

Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep

Findings (2)

Missing User Warnings

Medium

Confidence: 94% confidence
Finding: The skill explicitly requires an access token and sends it to an external API endpoint, but the manifest provides no user-facing disclosure about credential handling, third-party transmission, retention, or sharing. This creates a real risk of users supplying sensitive credentials without understanding they are being transmitted to JustOneAPI, which can lead to credential misuse, unauthorized API consumption, or privacy/compliance issues.

Credential Access

High

Category: Privilege Escalation
Content: "parameters": [ { "defaultValue": null, "description": "Access token for this API service.", "enumValues": [], "location": "query", "name": "token",
Confidence: 97% confidence
Finding: Access token

VirusTotal

65/65 vendors flagged this skill as clean.

View on VirusTotal