ClawHub

Yufluent Clawhub Publish Yufluentcn Shopify Operator

Security checks across malware telemetry and agentic risk

Overview

The skill appears to be a Shopify/business-operations cloud integration, but it sends sensitive store context and bearer-authenticated requests with unclear endpoint and privacy controls.

Review before installing. Only use this skill if you are comfortable sending Shopify store details and business metrics to the vendor API, and set any API base URL only to a trusted HTTPS endpoint. Avoid sharing unnecessary identifiers, revenue figures, or operational pain points unless needed for the task.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Trigger AbuseOverly Broad Trigger, Shadow Command Trigger, Keyword Baiting Trigger
  • Taint TrackingDirect Taint Flow, Variable-Mediated Taint Flow, Credential Exfiltration Chain
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Findings (3)

Tainted flow: 'url' from os.getenv (line 271, credential/environment) → requests.post (network output)

Critical
Category
Data Flow
Content
}
    if body is not None:
        kwargs["json"] = body
    return requests.post(url, **kwargs)


def _raise_for_status(resp: requests.Response) -> None:
Confidence
89% confidence
Finding
return requests.post(url, **kwargs)

Vague Triggers

Medium
Confidence
90% confidence
Finding
The trigger list contains broad natural-language phrases such as general Shopify operations questions, which increases the chance the skill will activate unintentionally for routine user prompts. Unintended activation can route business context and store details to the vendor cloud service when the user may not have intended to invoke this specific external integration.

Missing User Warnings

Medium
Confidence
93% confidence
Finding
The skill instructs users to provide store URL, niche, GMV, SKU counts, and operational pain points to a cloud-hosted API, but it does not present an explicit privacy notice, data handling description, or transmission warning at the point of collection. This creates a real risk of sensitive commercial data being sent off-device without informed consent or clear minimization guidance.

VirusTotal

65/65 vendors flagged this skill as clean.

View on VirusTotal