v1.0.1

baidunetdisk

ReviewClawScan verdict for this skill. Analyzed May 1, 2026, 5:44 AM.

Analysis

The skill matches its Baidu Netdisk purpose, but it needs full-access Baidu session cookies and can change or delete cloud files, so users should review it carefully before installing.

GuidanceInstall only if you are comfortable giving the skill full access to a Baidu Netdisk account. Prefer a dedicated/test account, protect or avoid local credential storage, and require manual confirmation before any delete, move, rename, or transfer operation.

Findings (4)

Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.

Abnormal behavior control

Checks for instructions or behavior that redirect the agent, misuse tools, execute unexpected code, cascade across systems, exploit user trust, or continue outside the intended task.

Tool Misuse and Exploitation

SeverityHighConfidenceHighStatusConcern

scripts/main.py

def delete_file(self, path: str): ... params = { 'method': 'delete', 'path': path } ... self.session.post(url, params=params, cookies=self._get_cookies())

The code directly performs a delete operation against the Baidu Netdisk API using the configured account credentials.

User impactAn agent invocation could delete or otherwise mutate cloud files if the user or prompt directs those actions, and the artifact does not show an additional confirmation step in code.

RecommendationRequire explicit user confirmation for delete, move, rename, and transfer actions; consider disabling destructive commands unless needed.

Human-Agent Trust Exploitation

SeverityLowConfidenceMediumStatusNote

metadata

Required env vars: none ... Primary credential: none

Registry-level requirement metadata does not surface the credential requirement, while the skill files require BDUSS/STOKEN secrets.

User impactA user relying only on registry metadata may underestimate the credential and account-access requirements before reading the full skill documentation.

RecommendationUpdate registry metadata/capability declarations to clearly state that Baidu session credentials are required and that the skill can mutate cloud files.

Agentic Supply Chain Vulnerabilities

SeverityLowConfidenceMediumStatusNote

SKILL.md

pip install requests

The skill uses a user-directed, unpinned package installation step for its Python dependency.

User impactInstalling an unpinned dependency can pick up future package versions with different behavior, though this dependency is expected for the skill's HTTP API use.

RecommendationPin dependency versions or provide a reviewed lockfile/install spec for reproducible installation.

Permission boundary

Checks whether tool use, credentials, dependencies, identity, account access, or inter-agent boundaries are broader than the stated purpose.

Identity and Privilege Abuse

SeverityHighConfidenceHighStatusConcern

SKILL.md

本 Skill 需要您的百度网盘登录凭证（BDUSS 和 STOKEN），这些凭证具有完全访问您网盘账户的权限

The skill requires Baidu session credentials and explicitly says they provide full access to the user's Netdisk account.

User impactIf these credentials are exposed or misused, the agent or anyone with access to the config could access and modify the user's Baidu Netdisk account.

RecommendationUse a dedicated/test Baidu account if possible, keep config.json permissions restricted, prefer environment/secret storage, and revoke or refresh cookies if exposure is suspected.