ClawHub
Skill flagged — suspicious patterns detected

ClawHub Security flagged this skill as suspicious. Review the scan results before using.

途牛旅游CLI技能

v1.0.4

途牛旅行统一助手(推荐优先使用)- 通过 tuniu CLI 统一调用机票、酒店、门票、火车票、邮轮、度假产品等旅行服务。适用于用户询问航班、酒店、景点门票、火车票、邮轮以及跟团游、自助游、自驾游等度假相关需求的场景。【优先级说明】当同时安装了 tuniu-flight/tuniu-hotel/tuniu-tic...

3· 69·0 current·0 all-time
by@leonardoooooo
MIT-0
Download zip
LicenseMIT-0 · Free to use, modify, and redistribute. No attribution required.
Security Scan
VirusTotalVirusTotal
Suspicious
View report →
OpenClawOpenClaw
Suspicious
medium confidence
Purpose & Capability
Name/description map cleanly to calling the tuniu CLI for travel queries and bookings; requiring the tuniu binary and an API key is expected. However, the registry-level summary in the provided manifest lists no required env vars while SKILL.md declares TUNIU_API_KEY as required in its embedded metadata — this mismatch is an inconsistency.
Instruction Scope
SKILL.md instructs the agent to run the tuniu CLI (tuniu call, discovery, schema, etc.) and explicitly warns that PII is sent to the remote service. It does not direct reading unrelated local files or other credentials. Using discovery to fetch new service definitions and calling the official openapi.tuniu.cn endpoints is within scope.
Install Mechanism
This is instruction-only (no install spec or code files). SKILL.md recommends installing tuniu-cli via npm or using npx; that is a low-risk, typical instruction-only pattern.
!
Credentials
The runtime instructions require an API key (TUNIU_API_KEY) which is proportionate to the skill's purpose. The concern is the inconsistency: top-level skill metadata in the registry reported no required env vars, while SKILL.md's embedded metadata marks TUNIU_API_KEY as required. SKILL.md also references TUNIU_DISCOVERY_ENABLED (used to toggle discovery) but that env var is not declared. This mismatch could lead to misconfiguration or surprise credential requests.
Persistence & Privilege
Skill is not marked always:true and does not request system-wide persistence or modify other skills. Agent autonomous invocation defaults are unchanged.
What to consider before installing
This skill appears to be a wrapper around the official tuniu CLI and will run shell commands that contact openapi.tuniu.cn and send booking PII to Tuniu. Before installing: (1) Confirm the registry metadata matches SKILL.md — ensure TUNIU_API_KEY is declared where you configure the skill (the manifest shown earlier omitted it). (2) Only install tuniu-cli from a trusted source (npm official package or vendor instructions). (3) Prepare a TUNIU_API_KEY with minimal scope and treat it as a secret; avoid pasting long-lived credentials into logs. (4) Be aware that booking operations will transmit user PII to Tuniu; if that is not acceptable, disable booking flows. (5) If you need greater assurance, ask the publisher to fix the manifest mismatch (declare required env vars consistently) or provide a signed/homepage/source link so you can verify the CLI binary's provenance.

Like a lobster shell, security has layers — review code before you run it.

latestvk971qr6sstwatkfgenttdt403h845mh4

License

MIT-0
Free to use, modify, and redistribute. No attribution required.
Termshttps://spdx.org/licenses/MIT-0.html

Runtime requirements

🧳 Clawdis
Binstuniu

Comments