Skillv1.0.1

ClawScan security

Parcel Coupon 快递优惠券-支持顺丰、中通、圆通、韵达、申通、菜鸟、同城配送，件件优惠 · ClawHub's context-aware review of the artifact, metadata, and declared behavior.

BenignMar 16, 2026, 9:44 AM

Verdict: benign
Confidence: medium
Model: gpt-5-mini
Summary: The skill is internally consistent with its stated purpose (fetch and display courier coupon links/QRs) and does not request unrelated credentials or install software, but it relies on an external API/hosts you should vet before trusting links or QR codes.
Guidance: This skill is coherent for fetching and showing courier coupons, but it relies on an external API and serves raw URLs and QR images from that service. Before installing or using it: 1) Verify the upstream repository and the trustworthiness of the domain (agskills.moontai.top and moontai-static.*) on the provided GitHub homepage; 2) Be cautious about clicking coupon links or scanning QR codes from an untrusted source—they can redirect to phishing or unwanted pages; 3) If possible, test the skill in a sandboxed environment and inspect actual API responses (or fetch the URLs in a safe browser) to confirm they point to legitimate coupon pages; 4) Consider adding a safety step (URL preview / safety-check) before presenting links to end users. If you need higher assurance, ask the developer for provenance of the coupon sources and logs showing sample responses.

Purpose & Capability: okName/description (fetching courier coupons and returning links/QR images) match the code and SKILL.md. The only external access is to the coupon API host (agskills.moontai.top / moontai-static.oss-cn-shenzhen.aliyuncs.com), which is expected for this purpose.
Instruction Scope: noteSKILL.md instructs the agent to call a single public GET endpoint and to present coupon_url and coupon_qrcode_img_url exactly as returned (no modification). This stays within purpose, but the explicit rule to present URLs/QRs verbatim increases the risk that malicious or phishing links could be shown to users without sanitization or safety checks.
Install Mechanism: okNo install spec (instruction-only) and included Python scripts are small and readable. No downloads from third-party URLs or unusual installation steps detected.
Credentials: okThe skill declares no environment variables, no credentials, and the code does not attempt to read system config or secrets. Network access to the external API is necessary for its function and is proportionate to the stated purpose.
Persistence & Privilege: okThe skill is not always-enabled and does not request elevated or persistent privileges, nor does it modify other skills or system settings.