途牛旅游CLI技能
ReviewAudited by ClawScan on May 10, 2026.
Overview
The skill fits a travel-booking purpose, but it can create or cancel travel orders and send personal details through an external CLI without clearly requiring per-order user confirmation.
Install only if you trust the Tuniu CLI and provider. Pin or verify the CLI package, protect the API key, and instruct the agent to ask for explicit confirmation before any order creation, booking, or cancellation.
Findings (4)
Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.
An agent using the skill could place or cancel reservations with the user's account/API key and provided traveler information if it proceeds too aggressively.
The skill documents CLI workflows that can create, book, or cancel travel orders; the provided artifact does not show a required final confirmation step before those high-impact mutations.
服务工具链路(搜索→详情→下单) ... `saveOrder` → `cancelOrder` ... `tuniu_hotel_create_order` ... `create_ticket_order` ... `bookTrain`
Require explicit user confirmation before any saveOrder/create_order/bookTrain/saveCruiseOrder/saveHolidayOrder/cancelOrder call, showing itinerary, price, cancellation terms, and PII to be submitted.
Anyone or any agent process with access to this environment variable may be able to make Tuniu API calls under the user's credential.
The skill requires a Tuniu API key for authenticated provider requests. This is purpose-aligned, but it is delegated account/API authority.
"TUNIU_API_KEY": {"type": "string", "description": "途牛开放平台 API key,用于 apiKey 请求头", "required": true} ... export TUNIU_API_KEY=your_api_keyUse a dedicated, least-privilege API key if available, keep it out of logs, and revoke or rotate it if the CLI or environment is shared.
Traveler names, phone numbers, and ID document numbers may leave the local environment and be processed by Tuniu.
Booking sends sensitive personal information to a remote provider. The data flow is disclosed and purpose-aligned, but users should treat it as sensitive.
预订功能会将用户提供的个人信息(联系人姓名、手机号、乘客姓名、证件号等)通过 tuniu CLI 发送至途牛远端服务,以完成订单创建。
Only provide the minimum required PII, verify the destination service, and avoid debug logs or chat responses that expose personal details.
The actual executable behavior can change as the npm package or Tuniu discovery service changes.
Runtime behavior depends on an external, unpinned CLI package and remotely discovered service/schema data, while the reviewed artifact contains no CLI code.
npm install -g tuniu-cli@latest ... npx tuniu-cli --version ... 服务发现默认开启 ... tuniu discovery refresh ... tuniu schema --output json
Install the CLI only from a trusted source, pin a reviewed version where possible, and review newly discovered services before using them for bookings.