ClawHub

Naver Shopping Plus

Security checks across malware telemetry and agentic risk

Overview

This skill is a straightforward shopping-search helper that sends user queries to Naver, Coupang, and 11st as expected, with no evidence of hidden persistence, destructive behavior, or unrelated data access.

Use this only for searches you are comfortable sending to Naver, Coupang, and 11st. Store the Naver API secret carefully, avoid echoing or pasting it into shared logs or chats, and consider installing dependencies in a virtual environment.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • MCP Least PrivilegeUnderdeclared Capability, Wildcard Permission, Missing Permission Declaration
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Findings (2)

Lp3

Medium
Category
MCP Least Privilege
Confidence
93% confidence
Finding
The skill documentation indicates use of environment variables for API credentials and network access to external services, but it does not declare corresponding permissions. Undeclared capabilities reduce transparency and can bypass user expectations or policy controls, especially for a skill that performs external requests and reads secrets from the environment. In this context, the shopping-search functionality makes network and env access expected, which lowers suspicion of malice but does not remove the security risk of silent capability use.

Missing User Warnings

Medium
Confidence
88% confidence
Finding
The README instructs users to configure API credentials and use networked scraping/search features, but it does not clearly warn that queries, headers, and scraped requests will be transmitted to third-party services. In a shopping-search skill, this can expose user search terms and secrets to external providers or logs, especially if users assume all processing is local.

VirusTotal

65/65 vendors flagged this skill as clean.

View on VirusTotal