건강보험심사평가원 병원 검색
AdvisoryAudited by Static analysis on Apr 30, 2026.
Overview
No suspicious patterns detected.
Findings (0)
Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.
A maliciously crafted hospital-name query could make the local agent run unintended code.
The user-provided hospital name is interpolated into Python source passed to `python3 -c` without escaping. A crafted name containing quotes and Python syntax could execute arbitrary Python as the agent user.
--name) HOSP_NAME="$2"; shift 2 ;; ... ENCODED_NAME=$(python3 -c "import urllib.parse; print(urllib.parse.quote('${HOSP_NAME}'))")Do not build Python source with shell-expanded user input. Pass the value via `sys.argv` or stdin, validate expected characters, and quote all shell arguments safely.
If this helper is invoked with untrusted type text, it may run unintended Python code locally.
The second positional argument is also embedded directly into generated Python code. A crafted hospital-type value can alter the Python expression.
HOSP_TYPE="${2:-병원}" ... if '$HOSP_TYPE' == '병원' or item_dict.get('clCdNm', '').find('$HOSP_TYPE') >= 0:Pass `HOSP_TYPE` as an argument or environment variable to Python and compare it as data, not as generated source code.
The agent can read and use the stored data.go.kr API key when running this skill.
The script reads a local API credential and sends it to the HIRA/data.go.kr API. This is purpose-aligned, but the registry metadata declares no credential or config-path requirement.
API_KEY=$(cat ~/.config/data-go-kr/api_key 2>/dev/null || echo "") ... PARAMS="serviceKey=${API_KEY}&pageNo=${PAGE_NO}&numOfRows=${NUM_OF_ROWS}&_type=json"Store only the intended data.go.kr key, restrict file permissions such as `chmod 600 ~/.config/data-go-kr/api_key`, and declare the credential/config requirement in metadata.
Hospital searches or related context may be sent to other services if the agent follows those optional integrations.
The skill documents optional cross-skill/provider use for web search, weather, and Telegram notifications. This is disclosed, but health-related query context could be shared outside the HIRA API if those integrations are used.
병원 검색 결과 보충 | `web_search` (Brave) | 병원 리뷰·평판·홈페이지 보충 검색 ... `~~notify` | Alerts | Telegram
Ask for user confirmation before using web search or notifications for health-related queries, and clearly state which external service will receive the query.
The skill may fail or run differently depending on local tools, and users may not see the dependency requirement before installation.
The package includes executable helper scripts, but the metadata does not declare the runtime tools those scripts use, such as bash, curl, and python3. This is a completeness issue, not evidence of hidden installation.
Required binaries (all must exist): none; No install spec — this is an instruction-only skill; Code file presence: scripts/hospital.sh, scripts/hospital_detail.sh, scripts/hospital_search.sh
Declare required binaries and the local API-key config path in the skill metadata.