卖家之家(跨境电商)服务产品搜索与发布
PassAudited by VirusTotal on May 11, 2026.
Overview
Type: OpenClaw Skill Name: mjzj-mall Version: 1.0.0 The mjzj-mall skill bundle is a standard integration for searching and publishing e-commerce service products on the Seller's Home (mjzj.com) platform. It defines clear API interactions with data.mjzj.com, handles authentication via a standard environment variable (MJZJ_API_KEY), and provides logical instructions for product submission and image uploads without any evidence of malicious intent, data exfiltration, or harmful command execution.
Findings (0)
Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.
Anyone using this skill with the API key is granting it the ability to act through the connected MJZJ account for the documented marketplace actions.
The skill requires an API key for authenticated endpoints that upload files and submit new product applications.
Authorization: Bearer $MJZJ_API_KEY
Use a dedicated or least-privilege API key if available, keep it private, and rotate it if it may have been exposed.
A submitted product application could enter the provider's review process and potentially become a public or business-facing listing.
The skill can submit a new-product application, which is purpose-aligned but still mutates marketplace/account data and may affect business workflows after review.
调用 /api/spProduct/applyNewProduct,提交后进入后台审核,不是即时正式发布。
Before submitting, review the title, description, labels, price, images, and sale dates, and ask the agent to show the final payload if needed.
Selected image files may be uploaded to the marketplace provider's storage for use in the product application.
The skill directs uploading cover and detail images to provider-issued temporary upload URLs as part of the product-submission flow.
对每个 putUrl 执行 PUT 上传文件
Only provide images intended for the product listing and avoid uploading private or unrelated files.