通过 JumpOnce 代理服务访问海外被封禁的 API（币安 US、GitHub、Google、OpenAI 等），支持 HTTP 转发和 WebSocket 透传，出口节点位于 Oracle Cloud 美国凤凰城

Security checks across malware telemetry and agentic risk

Overview

This proxy skill matches its stated purpose, but it needs Review because it can send sensitive web traffic through a third party and includes insecure plain-HTTP examples.

Install only if you intentionally want to route requests through JumpOnce/jumptox.top. Do not forward Authorization headers, cookies, internal URLs, personal data, or live session streams unless you trust the provider and have authorization. Prefer HTTPS-only endpoints, inspect requests before sending, and treat any plain-HTTP example as unsafe.

SkillSpector

By NVIDIA

Vulnerability Patterns

Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Trigger AbuseOverly Broad Trigger, Shadow Command Trigger, Keyword Baiting Trigger
MCP Least PrivilegeUnderdeclared Capability, Wildcard Permission, Missing Permission Declaration
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access

Findings (9)

Lp3

Medium

Category: MCP Least Privilege
Confidence: 94% confidence
Finding: The skill clearly requires environment-variable access and outbound network access, yet it declares no permissions. That mismatch can bypass user/operator expectations and weakens governance because a skill that can read secrets and send data externally is more dangerous when those capabilities are implicit rather than explicitly disclosed.

Vague Triggers

Medium

Confidence: 88% confidence
Finding: The activation criteria are broad and keyword-based, such as matching generic mentions of overseas access or proxies. This can cause the skill to trigger in contexts where the user did not intend to route data through an external proxy, increasing the chance of unintended data exposure.

Missing User Warnings

High

Confidence: 97% confidence
Finding: The skill does not prominently warn that HTTP and WebSocket traffic, including URLs, headers, bodies, and possibly credentials, is transmitted to a third-party proxy provider. In this context that omission is significant because the skill’s whole purpose is relaying potentially sensitive traffic off-network to an external service.

Missing User Warnings

Medium

Confidence: 93% confidence
Finding: The API reference explicitly documents an HTTP forwarding service that can send requests, headers, parameters, and response bodies to arbitrary external targets, but it provides no warning that user data and credentials may be transmitted off-network. In a proxy skill whose stated purpose is accessing overseas/external URLs, this omission materially increases the risk of users unknowingly sending sensitive data to third-party systems or using the service in unsafe contexts.

Missing User Warnings

Medium

Confidence: 94% confidence
Finding: The WebSocket documentation describes creation of relay channels to external services and persistent bidirectional streaming, but it omits any warning that live session data may be continuously transmitted to an external endpoint. Because WebSocket relays can carry authentication material, chat content, or other sensitive streams in real time, missing disclosure of this behavior is a meaningful safety issue.

Missing User Warnings

Medium

Confidence: 96% confidence
Finding: The script forwards arbitrary user-supplied URLs, headers, params, and optional body content to an external third-party proxy service without any explicit runtime warning or consent gate. In this skill context, that is especially sensitive because users may unknowingly send tokens, cookies, internal endpoints, or personal data through an overseas proxy operator.

External Transmission

Medium

Category: Data Exfiltration
Content: ```python import requests resp = requests.post( "http://api.jumptox.top/api/v1/http/request", json={ "url": "https://example.com/api",
Confidence: 99% confidence
Finding: requests.post( "http://

External Transmission

Medium

Category: Data Exfiltration
Content: ```python import requests resp = requests.post( "http://api.jumptox.top/api/v1/http/request", json={ "url": "https://example.com/api",
Confidence: 99% confidence
Finding: requests.post( "http://api.jumptox.top/api/v1/http/request", json=

External Transmission

Medium

Category: Data Exfiltration
Content: import requests resp = requests.post( "http://api.jumptox.top/api/v1/http/request", json={ "url": "https://example.com/api", "method": "GET",
Confidence: 99% confidence
Finding: http://api.jumptox.top/

VirusTotal

67/67 vendors flagged this skill as clean.

View on VirusTotal