ClawHub

Tianshu Huangdao

Security checks across malware telemetry and agentic risk

Overview

This is a disclosed paid Chinese almanac, fortune, and naming skill with no hidden executable code or unsafe persistence, though users should confirm paid calls and data sharing with the external API.

Install only if you are comfortable with a paid external service. Confirm the $1.68 PayPal charge before using paid features, and avoid sending birth dates, surnames, gender, or other personal details unless you want them processed by sinodata.io for the requested reading or naming result.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Trigger AbuseOverly Broad Trigger, Shadow Command Trigger, Keyword Baiting Trigger
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Findings (3)

Vague Triggers

Medium
Confidence
91% confidence
Finding
The skill description uses broad trigger language such as asking about auspicious dates, fortunes, naming, or five-element divination, without defining clear routing boundaries. This can cause the agent to invoke the skill for loosely related user messages, unnecessarily sending sensitive personal data like birth dates, names, or zodiac information to an external paid API and increasing privacy and billing risk.

Natural-Language Policy Violations

Medium
Confidence
84% confidence
Finding
The skill mandates that all output be in Traditional Chinese, regardless of the user's language or preference, and instructs the agent to transform API output before presenting it. This is primarily a user-consent and usability issue, but it can also obscure transparency by altering third-party content without user opt-in and may cause misunderstandings for users expecting another language.

Vague Triggers

Medium
Confidence
93% confidence
Finding
The trigger list includes very broad terms such as "運勢", "五行", "命理", "卦", and English words like "fortune" that can match ordinary conversation and route users into a paid astrology skill without clear intent. In a pay-per-call skill, overbroad activation is especially risky because accidental invocation can cause unwanted charges, misrouting, and manipulation of user queries toward monetized content.

VirusTotal

64/64 vendors flagged this skill as clean.

View on VirusTotal