ClawHub

book-hotels

Security checks across malware telemetry and agentic risk

Overview

This hotel-search skill is coherent and purpose-aligned, but users should handle its API key carefully.

Install only if you are comfortable using RollingGo for hotel searches and sharing the necessary travel query details with its service. Prefer setting AIGOHOTEL_API_KEY as an environment variable or secure secret instead of using --api-key in commands, and review booking links before making purchases.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
  • Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
Findings (2)

Missing User Warnings

Medium
Confidence
94% confidence
Finding
The document explicitly recommends passing the API key via a CLI argument (`--api-key YOUR_API_KEY`), which can expose the secret through shell history, process listings, terminal logs, and CI job output. Although it also documents use of an environment variable, presenting command-line secrets as a normal usage pattern without warning encourages unsafe secret handling.

Missing User Warnings

Medium
Confidence
93% confidence
Finding
The document explicitly demonstrates passing the API key via `--api-key YOUR_API_KEY` on the command line. Command-line secrets are commonly exposed through shell history, terminal logging, process listings, CI logs, and support screenshots, so this creates a realistic credential leakage risk even though the file also mentions environment-variable usage. In this skill context, the risk is somewhat increased because the document is operational guidance for repeated CLI use, making copy-paste of the insecure example likely.

VirusTotal

66/66 vendors flagged this skill as clean.

View on VirusTotal