ClawHub
Back to skill

Security audit

Xiaohongshu Creator Marketplace (Pugongying) Note Details API

Security checks across malware telemetry and agentic risk

Overview

This focused API skill is not malicious, but it handles an API token in ways that can accidentally expose it.

Review before installing if you will use a real JustOneAPI token, especially on shared machines or logged environments. Prefer a version or wrapper that reads the token directly from a protected environment variable or secret store and avoids putting credentials in command arguments or URLs where possible.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
  • Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
Findings (2)

Missing User Warnings

Medium
Confidence
95% confidence
Finding
The skill defines the authentication token as a query parameter and injects it into the request URL, which can expose the secret in logs, browser/history-equivalents, proxies, monitoring systems, crash reports, and upstream server access logs. Although the request is sent over HTTPS, placing credentials in the URL materially increases the chance of accidental disclosure compared with using an Authorization header.

Missing User Warnings

Medium
Confidence
83% confidence
Finding
The operation documentation requires a user authentication token in a query parameter but provides no guidance on secure handling, storage, redaction, or privacy implications. Tokens in query strings are especially risky because they can be exposed in logs, browser history, analytics systems, proxies, and referrer headers, making accidental credential leakage more likely.

VirusTotal

62/62 vendors flagged this skill as clean.

View on VirusTotal

Static analysis

Detected: suspicious.secret_argv_exposure

Instructions pass high-value credentials through process argv.

Critical
Code
suspicious.secret_argv_exposure
Location
SKILL.md:42