途牛酒店预订技能
Security checks across malware telemetry and agentic risk
Overview
This is a coherent Tuniu hotel-booking skill, but it uses shell/curl with a Tuniu API key and sends booking personal information to Tuniu, so users should confirm orders and protect credentials.
Install only if you intend to let the agent search and book hotels through Tuniu. Configure a dedicated Tuniu API key, keep it out of logs, use the default or another trusted MCP URL, and require a clear final confirmation before any order is created or personal booking information is sent.
VirusTotal
59/59 vendors flagged this skill as clean.
Risk analysis
Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.
The agent may make external API calls and create a hotel order based on the conversation if the user asks to book.
The skill intentionally uses shell/curl with conversation-derived values to call hotel tools, including booking. This is disclosed and purpose-aligned, but raw shell invocation requires careful quoting and explicit user control for order creation.
本 skill 通过 **shell exec** 执行 **curl** 向 MCP endpoint 发起 HTTP POST 请求 ... 根据用户当前需求填入实际值
Use only with the intended Tuniu endpoint, ensure user-provided fields are safely escaped/encoded, and require an explicit final confirmation before invoking create_order.
Anyone who can use the configured skill may be able to make Tuniu API requests under the configured API key.
The skill requires a Tuniu API key and sends it as an authentication header. This is expected for the Tuniu integration, but it is still delegated account/API authority.
"TUNIU_API_KEY": { "type": "string", "description": "途牛开放平台 API key,用于 apiKey 请求头", "required": true }Use a revocable, least-privileged Tuniu API key and avoid exposing the key in logs, transcripts, or shared environments.
Names, phone numbers, guest details, dates, and booking selections may be transmitted to Tuniu when making a reservation.
The artifact explicitly discloses that booking PII is sent to an external MCP service. This is purpose-aligned for hotel booking, but users should understand the data boundary.
预订功能会将用户提供的**个人信息**(联系人姓名、手机号、入住人姓名等)通过 HTTP POST 发送至途牛 MCP 远端服务(`https://openapi.tuniu.cn/mcp/hotel`)
Only provide the personal information needed for booking, confirm the destination endpoint is trusted, and avoid logging or repeating PII in chat responses.