Skill flagged — suspicious patterns detected
ClawHub Security flagged this skill as suspicious. Review the scan results before using.
Cn Ecommerce Search
v2.0.0Search products across 8 Chinese e-commerce platforms: Taobao, Tmall, JD, PDD, 1688, AliExpress, Douyin, XHS. Zero-config — no API keys needed. Powered by Sh...
⭐ 6· 3.4k·28 current·30 all-time
byShopme@shopmeskills
MIT-0
Download zip
LicenseMIT-0 · Free to use, modify, and redistribute. No attribution required.
Security Scan
OpenClaw
Suspicious
medium confidencePurpose & Capability
The described capability (searching a unified Shopme product DB across Chinese platforms) is coherent with the skill name and description. However, the SKILL.md requires launching an MCP server with the command 'npx @shopmeagent/cn-ecommerce-search-mcp' even though the skill metadata lists no required binaries. If the agent runtime must run 'npx', that should be declared; otherwise the skill cannot operate as described.
Instruction Scope
The SKILL.md tells the agent to run an external MCP server via npx (which will download and execute code from the npm registry) and to call Shopme's API endpoint (default https://api.shopmeagent.com). Aside from an optional SHOPME_API_BASE override, there are no instructions to validate or sandbox that code. There is no indication the MCP package is shipped with the skill; running it gives arbitrary remote code execution scope to the skill at runtime.
Install Mechanism
No formal install spec is provided, but the MCP-server setup explicitly uses npx to fetch @shopmeagent/cn-ecommerce-search-mcp. Fetching and executing an npm package at runtime is a moderate-to-high risk operation (network download, code executed locally). The package and its publisher are not linked or documented (no homepage/source), so provenance cannot be verified from the skill metadata.
Credentials
The skill declares no required credentials and only an optional SHOPME_API_BASE env var (to point at a different API). That is proportionate to a search service. However, the SKILL.md omission of 'npx' as a required binary is an inconsistency. The optional SHOPME_API_BASE could be used legitimately for local development but could also be used to redirect traffic to an attacker-controlled API if set improperly.
Persistence & Privilege
The skill does not request always:true, does not declare persistent credentials, and is user-invocable only. There is no declared behavior that modifies other skills or system-wide agent settings. The main privilege concern is runtime execution of the MCP npm package, not elevated platform-level privileges.
What to consider before installing
This skill appears to rely on a remote npm package (@shopmeagent/cn-ecommerce-search-mcp) that will be fetched and executed via 'npx' even though the metadata lists no required binaries. Before installing: (1) verify the npm package and its maintainers (check the package on the npm registry, review source code if available); (2) ensure your agent runtime safely allows 'npx' and you are comfortable with running third‑party code (or run it in a sandbox); (3) be cautious about network access to api.shopmeagent.com and the optional SHOPME_API_BASE — do not set it to an untrusted host; (4) if you cannot verify the MCP package or prefer not to run external code, decline or request a version with embedded, auditable code or an explicit install spec and provenance. The mismatch between the SKILL.md and declared requirements is the main reason for caution.Like a lobster shell, security has layers — review code before you run it.
latestvk97exyx7mj0yq63jk2pdw4kdns81gjcw
License
MIT-0
Free to use, modify, and redistribute. No attribution required.