tikhub-api-skill
WarnAudited by ClawScan on May 10, 2026.
Overview
The skill is mostly a TikHub API helper, but it has unclear credential handling, can send its bearer token to arbitrary URLs, and exposes some high-risk API categories beyond ordinary social-media data fetching.
Review this skill carefully before use. Do not share platform cookies unless you fully understand the endpoint and trust TikHub with that session data. Remove the bundled default token, restrict requests to official TikHub domains, and avoid using the captcha-solver or temporary-email endpoints unless they are explicitly appropriate for your use case.
Findings (4)
Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.
API requests may run under an unknown shared TikHub credential rather than a token you intentionally provided.
The client authenticates by default with a bundled bearer token instead of requiring a declared user credential. This makes the account, quota, and authority used for API calls unclear.
DEFAULT_TOKEN = "vZdfXsQ...aTAi8aA==" ... self.api_token = api_token or self.DEFAULT_TOKEN
Remove the bundled token, require an explicit user-provided token, implement the documented environment variable, and declare the credential in metadata.
If the agent is tricked into using an off-domain URL, the TikHub bearer token could be sent to another server.
The client accepts a full arbitrary URL as the request path and still attaches the bearer Authorization header, rather than restricting authenticated requests to TikHub domains.
if path.startswith('http'):
return path ... "Authorization": f"Bearer {self.api_token}"Only allow relative /api/... paths or validated TikHub domains, and never attach Authorization headers to non-TikHub URLs.
The agent could ask for or transmit sensitive social-platform session cookies to TikHub for some endpoints.
The bundled API catalog includes endpoints described as requiring user cookies and accessing creator traffic analytics, but the skill metadata and SKILL.md do not clearly declare or bound platform cookie/session handling.
Douyin-Creator-V2-API) - (需要用户Cookie,可获取作品流量总览等数据)
Clearly disclose cookie-requiring endpoints, require explicit per-call consent, avoid collecting platform cookies where possible, and document exactly what is sent to TikHub.
The skill could help discover and call services used to bypass anti-abuse checks or create disposable email accounts.
The bundled API specification advertises captcha-bypass and temporary-email APIs, which are not clearly part of the stated social-media data-fetching use case and may support abuse-prone workflows.
Captcha Solver/Temp Mail API ... 验证码绕过接口 ... 临时邮箱接口
Remove or disable these endpoints from the skill, or clearly disclose them and require strict user confirmation and policy checks before use.