ClawHub

qianxin-hunter-api

v1.0.2

奇安信 Hunter API 调用技能。支持查询接口和导出任务(批量查询)。需配置 QIANXIN_HUNTER_API_KEY 环境变量。

0· 156·0 current·0 all-time
by@piggyhurry
MIT-0
Download zip
LicenseMIT-0 · Free to use, modify, and redistribute. No attribution required.
Security Scan
VirusTotalVirusTotal
Benign
View report →
OpenClawOpenClaw
Benign
high confidence
Purpose & Capability
Name and description match the actual artifacts: the script talks to hunter.qianxin.com and requires QIANXIN_HUNTER_API_KEY. Required binary (python3) and declared primaryEnv are appropriate for a Hunter API CLI.
Instruction Scope
SKILL.md instructs only how to run the included Python CLI for search and batch export, how to provide the API key, and how to use files for batch queries. The runtime script only reads the provided CSV file (when --file is used) and the QIANXIN_HUNTER_API_KEY environment variable; it does not attempt to read unrelated system files or other environment variables.
Install Mechanism
This is instruction-only (no install spec), which minimizes risk. The README notes the Python 'requests' package is required but there is no automatic install step; the environment must provide python3 and requests. No downloads from arbitrary URLs or extract steps are present.
Credentials
Only QIANXIN_HUNTER_API_KEY is requested and declared as primary credential, which is proportionate for an API client. No unrelated secrets or config paths are requested.
Persistence & Privilege
The skill does not request always: true and makes no changes to other skills or global agent config. It is a normal, on-demand tool with no elevated persistence requirements.
Assessment
This package appears coherent for accessing the Qianxin Hunter API: it requires a single API key and python3 (plus the requests library). Before installing: 1) only store the API key via your platform's secure skill config (do not paste it in chat), 2) ensure the requests package is available in the runtime environment, 3) be aware that any CSV file you pass will be uploaded to the Hunter service, and downloaded results will be saved locally (check output path and permissions), and 4) treat the API key as sensitive — rotate it if you suspect leakage. If you need higher assurance, verify the API host (https://hunter.qianxin.com) matches your expected endpoint and review network policies for outbound calls.

Like a lobster shell, security has layers — review code before you run it.

latestvk971m3x4k1vvj1ye7b53abbv41837npj

License

MIT-0
Free to use, modify, and redistribute. No attribution required.
Termshttps://spdx.org/licenses/MIT-0.html

Runtime requirements

🔍 Clawdis
Binspython3
EnvQIANXIN_HUNTER_API_KEY
Primary envQIANXIN_HUNTER_API_KEY

Comments