ClawHub
Back to skill

Security audit

Xiaohongshu Creator Marketplace (Pugongying) Note Details API

Security checks across malware telemetry and agentic risk

Overview

This is a narrow JustOneAPI helper, but it handles the user’s API token in ways that can expose it through command lines and request URLs.

Install only if you are comfortable using a JustOneAPI token with this helper. Run it on a trusted machine, avoid logging commands or full request URLs, and rotate the token if you think it may have been exposed. Prefer a version that reads the token directly from a protected environment variable and avoids placing credentials in URLs if the provider supports it.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
  • Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
Findings (2)

Missing User Warnings

Medium
Confidence
98% confidence
Finding
The skill defines the authentication token as a query parameter and later appends all query parameters to the URL before issuing the request. Query-string tokens are routinely exposed through logs, browser/history tooling, monitoring systems, proxy caches, and error telemetry, making credential leakage more likely than if the token were sent in an Authorization header.

Missing User Warnings

Medium
Confidence
95% confidence
Finding
The documentation specifies a required user authentication token in the query string but does not warn about the security implications. Query parameters are commonly logged by servers, proxies, browser history, monitoring tools, and analytics systems, which can expose bearer-style credentials and enable unauthorized API access if leaked.

VirusTotal

64/64 vendors flagged this skill as clean.

View on VirusTotal

Static analysis

Detected: suspicious.secret_argv_exposure

Instructions pass high-value credentials through process argv.

Critical
Code
suspicious.secret_argv_exposure
Location
SKILL.md:41