Mcporter Railway Query
Security checks across malware telemetry and agentic risk
Overview
This skill is a transparent helper for read-only Chinese railway ticket and station-code queries through a user-configured mcporter setup.
Install only if you trust the mcporter CLI package and the 12306 MCP server configured in ~/.mcporter/mcporter.json. Expect route, station, and date query details to be sent through that configured setup; the skill itself appears limited to read-only lookup helpers.
SkillSpector
By NVIDIA
Vulnerability Patterns
- Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
- Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
- Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
- Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
- Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
VirusTotal
62/62 vendors flagged this skill as clean.