ClawHub
Back to skill

Security audit

Xiaohongshu Creator Marketplace (Pugongying) Follower Summary API

Security checks across malware telemetry and agentic risk

Overview

This is a narrow JustOneAPI wrapper for one Xiaohongshu follower-summary endpoint, with real but disclosed credential-handling cautions.

Install only if you trust JustOneAPI and intend to query this specific follower-summary API. Use a limited or short-lived token if available, avoid sharing command logs, shell history, screenshots, or URLs containing the token, and rotate the token if it may have been exposed.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
  • Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
Findings (2)

Missing User Warnings

Medium
Confidence
96% confidence
Finding
The skill accepts an authentication token as a query parameter and then appends all query parameters directly to the request URL. Query-string tokens are routinely exposed through logs, browser/history mechanisms, proxy and CDN access logs, monitoring systems, and error reporting, making credential leakage more likely than if the token were sent in an authorization header. In this skill context, the token is required for an external API call, so every invocation risks credential exposure to intermediate infrastructure.

Missing User Warnings

Medium
Confidence
97% confidence
Finding
Passing an authentication token in the query string is unsafe because URLs can be logged by servers, intermediaries, browser history, analytics tools, and monitoring systems. In this skill context, the token grants access to creator analytics data, so exposure could enable unauthorized access to account-linked data or replay of authenticated API requests.

VirusTotal

64/64 vendors flagged this skill as clean.

View on VirusTotal

Static analysis

Detected: suspicious.secret_argv_exposure

Instructions pass high-value credentials through process argv.

Critical
Code
suspicious.secret_argv_exposure
Location
SKILL.md:41