my_acceptance_rate_analysis_new
SuspiciousAudited by ClawScan on May 10, 2026.
Overview
The skill’s analytics purpose is coherent, but it embeds a DataWorks access token and logs raw query results by default, so its credential and data handling need review before use.
Review this skill before installing. It appears built for the stated acceptance-rate analysis workflow, but you should not run it with the embedded token. Ask the publisher to remove and rotate the hardcoded credential, declare the required DataWorks credential, and disable or redact raw debug logging before using it on business data.
Findings (2)
Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.
Anyone with the skill package may obtain or use the embedded token to query the DataWorks metric service, potentially under an account or permission boundary the user did not approve.
The client falls back to an embedded DataWorks access token and sends it as an authentication cookie. This grants account-backed API access without requiring the user to provide or scope their own credential.
DEFAULT_ACCESS_TOKEN = os.getenv("BIGDATA_ACCESS_TOKEN", "manage-3f0c66fa-...") ... headers={"Cookie": f"bigdata_access_token={access_token or DEFAULT_ACCESS_TOKEN}"}Remove and rotate the embedded token, require a user-provided secret such as BIGDATA_ACCESS_TOKEN, declare the credential requirement in metadata, and validate that requests only go to trusted endpoints.
Private analysis results may remain in local or agent logs after the task, increasing the chance of accidental disclosure or reuse outside the intended analysis.
Raw SQL metadata, response rows, and data lists are logged by default unless DATAWORKS_QUERY_LOG is disabled. These query results can contain sensitive business, funding, or asset-segmentation data.
if os.getenv("DATAWORKS_QUERY_LOG", "1") ... logger.info("[query_metric_data] 响应原始数据 {}", json.dumps({"sql": data.get("sql"), "data_list": data_list, "rows": _map_response_rows(column_head_list, data_list)}))Disable raw response logging by default, redact sensitive fields, document any retained logs, and provide a clear retention and cleanup mechanism.