ClawHub

Yufluentcn Visual Craft

Security checks across malware telemetry and agentic risk

Overview

This skill is a disclosed Yufluent cloud client for ecommerce visual-content briefs, with credential and privacy cautions but no evidence of hidden, destructive, or deceptive behavior.

Install only if you intend to send product prompts, listing context, and related marketing content to Yufluent's cloud service. Set TOKENAPI_BASE_URL only to a trusted endpoint, preferably HTTPS except for local development, and avoid submitting confidential or regulated product information unless your organization approves that use.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Trigger AbuseOverly Broad Trigger, Shadow Command Trigger, Keyword Baiting Trigger
  • Taint TrackingDirect Taint Flow, Variable-Mediated Taint Flow, Credential Exfiltration Chain
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Findings (5)

Tainted flow: 'url' from os.getenv (line 107, credential/environment) → requests.post (network output)

Critical
Category
Data Flow
Content
url = skill_run_url(base_url or os.getenv("TOKENAPI_BASE_URL", ""), skill_id)
    try:
        resp = requests.post(
            url,
            json=payload,
            headers={
Confidence
94% confidence
Finding
resp = requests.post( url, json=payload, headers={ "Authorization": f"Bearer {key}", "Accept": "application/json",

Tainted flow: 'url' from os.getenv (line 107, credential/environment) → requests.post (network output)

Critical
Category
Data Flow
Content
url = agent_outcomes_url(base_url or os.getenv("TOKENAPI_BASE_URL", ""))
    try:
        resp = requests.post(
            url,
            json=payload,
            headers={
Confidence
93% confidence
Finding
resp = requests.post( url, json=payload, headers={ "Authorization": f"Bearer {key}", "Accept": "application/json",

Missing User Warnings

Low
Confidence
81% confidence
Finding
The README instructs users to configure an API key and send product-related prompts to a cloud endpoint, but it does not clearly warn that prompts, product details, and potentially sensitive commercial information will be transmitted to an external service. This creates a real privacy and data-handling risk because users may assume processing is local or may not realize confidential business data is leaving their environment.

Vague Triggers

Medium
Confidence
77% confidence
Finding
The trigger phrases are broad enough to match common creative requests such as 'A+ 内容' or '分镜脚本', which may cause the skill to activate outside a narrowly intended context. Because this skill sends prompts and product/listing data to a remote service, overbroad activation increases the chance of unintended data disclosure or workflow hijacking.

Missing User Warnings

Medium
Confidence
90% confidence
Finding
The skill description emphasizes cloud execution but does not clearly and prominently warn that product details, listing context, and possibly file-sourced content may be transmitted to Yufluent's remote service. Users may reasonably provide proprietary marketing copy or unreleased product information without informed consent about third-party processing.

VirusTotal

65/65 vendors flagged this skill as clean.

View on VirusTotal