万怡酒店查询与预订

Security checks across malware telemetry and agentic risk

Overview

This skill is a disclosed hotel-search connector that sends search terms to a configured proxy and does not show hidden storage, persistence, payment handling, or destructive behavior.

Install only if you are comfortable configuring and trusting the proxy endpoint and token provider. Keep PROXY_URL set to a trusted HTTPS service, avoid entering unnecessary personal details in search fields, and remember that booking happens through returned external links rather than inside the skill.

SkillSpector

By NVIDIA

Vulnerability Patterns

Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Taint TrackingDirect Taint Flow, Variable-Mediated Taint Flow, Credential Exfiltration Chain
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code

Findings (2)

Tainted flow: 'req' from os.environ.get (line 25, credential/environment) → urllib.request.urlopen (network output)

Critical

Category: Data Flow
Content: method="POST", ) try: resp = urllib.request.urlopen(req, timeout=timeout) data = json.loads(resp.read().decode("utf-8")) if data.get("status") == "error": return {"success": False, "error": data.get("message", "未知错误")}
Confidence: 93% confidence
Finding: resp = urllib.request.urlopen(req, timeout=timeout)

Missing User Warnings

Medium

Confidence: 88% confidence
Finding: User-provided destination, hotel name, dates, and package search terms are transmitted to an external proxy, but the code contains no notice, consent, or minimization step before forwarding that data. In a travel-booking context this can expose potentially sensitive itinerary information to a third party and create privacy/compliance issues even if the proxy is legitimate.

VirusTotal

65/65 vendors flagged this skill as clean.

View on VirusTotal