Sfe Data Viewer
AdvisoryAudited by VirusTotal on Mar 31, 2026.
Overview
Type: OpenClaw Skill Name: sfe-data-viewer Version: 1.0.1 The skill bundle is a legitimate data retrieval tool for Sales Force Effectiveness (SFE) in the pharmaceutical industry. It contains Python scripts that interface with APIs at mediportal.com.cn to query zone, product, and project data. While the scripts exhibit a security vulnerability by disabling SSL verification (verify=False in multiple files like scripts/sfe-user/zone.py), this appears to be a common development oversight rather than intentional malice. The bundle includes a specialized 'TOON' encoder (scripts/common/toon_encoder.py) to optimize LLM token consumption, and its instructions in SKILL.md are consistent with standard agent-based task automation and dependency management.
Findings (0)
Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.
The agent could install or overwrite another skill before making data queries, creating a supply-chain and trust risk around the component that handles authentication.
The skill instructs the agent to install an authentication dependency at runtime from latest/GitHub sources using --force, without a pinned version or an explicit approval gate in the artifact.
如果未安装,先执行 `npx clawhub@latest install cms-auth-skills --force` ... 再执行 `npx clawhub@latest install https://github.com/spzwin/cms-auth-skills.git --force`
Require explicit user approval before installing dependencies, pin the auth skill to a trusted version/source, avoid --force unless necessary, and declare the dependency in the install/metadata contract.
Whoever controls the appKey and tenant selection controls what SFE customer, project, and sales-effectiveness data the agent can retrieve.
The skill relies on an appKey supplied through another auth skill to access business APIs. This is expected for the integration, but it is privileged access to enterprise data.
接口版本: 所有业务接口统一使用 `/erp-open-api/*` 前缀,通过 `appKey` 鉴权。... 当接口声明需要 `appKey` 时,先尝试读取 `cms-auth-skills/SKILL.md`
Use a least-privilege appKey, confirm the intended tenantId when multiple tenants exist, and avoid sharing returned data outside the authorized business context.
The agent may run included scripts to fetch potentially large amounts of authorized SFE data from the production API.
The skill requires local Python scripts to make API calls. This is consistent with the stated design, but users should trust and review the scripts because they mediate all API access.
调用 `scripts/<module>/<endpoint>.py` 执行接口调用... **所有接口调用必须通过脚本执行,不允许跳过脚本直接调用 API。**
Run scripts only for user-requested queries, review parameters before execution, and monitor large paginated requests.