ClawHub

Track Flight

Security checks across malware telemetry and agentic risk

Overview

This flight-tracking skill does what it says, but its free AviationStack setup sends the API key and flight lookup over HTTP.

Use a dedicated, revocable AviationStack key and avoid using this skill for sensitive travel lookups on untrusted networks. Prefer an HTTPS-capable plan, proxy, or alternative provider if confidentiality matters, and install Python dependencies in a virtual environment.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Taint TrackingDirect Taint Flow, Variable-Mediated Taint Flow, Credential Exfiltration Chain
  • MCP Least PrivilegeUnderdeclared Capability, Wildcard Permission, Missing Permission Declaration
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Findings (5)

Tainted flow: 'params' from os.environ.get (line 36, credential/environment) → requests.get (network output)

Critical
Category
Data Flow
Content
}
    
    try:
        response = requests.get(base_url, params=params, timeout=10)
        response.raise_for_status()
        return response.json()
    except requests.exceptions.RequestException as e:
Confidence
98% confidence
Finding
response = requests.get(base_url, params=params, timeout=10)

Lp3

Medium
Category
MCP Least Privilege
Confidence
91% confidence
Finding
The skill requires both network access and an API key from the environment, but the manifest does not declare those capabilities or permissions. This creates a transparency and governance gap: users or hosting platforms may not realize the skill can make outbound requests and consume secrets, which increases the chance of unintended data exposure or policy bypass.

Missing User Warnings

Low
Confidence
83% confidence
Finding
The documentation tells users to query a third-party flight-data API but does not clearly disclose that searched flight numbers and associated request metadata will be transmitted to AviationStack. While flight numbers are usually low-sensitivity, the omission can still create a privacy and consent issue, especially if queries are tied to a user's travel plans, timing, IP address, or organizational activity.

Missing User Warnings

Medium
Confidence
98% confidence
Finding
The documentation explicitly states that the free tier supports HTTP only, but it does not warn users that API requests and the API key may be sent in cleartext. If used over untrusted networks, an attacker could intercept the key and flight query data via network sniffing or man-in-the-middle techniques, enabling unauthorized API use and possible exposure of user lookup activity.

Missing User Warnings

Medium
Confidence
99% confidence
Finding
Both the flight number and the API key are transmitted over unsecured HTTP without any warning or opt-in, exposing sensitive request data to passive interception and active tampering. Even if the flight query itself is low sensitivity, the API key is a reusable secret and the insecure channel significantly elevates the risk.

VirusTotal

63/63 vendors flagged this skill as clean.

View on VirusTotal