ClawHub

12306火车票查询与预订

Security checks across malware telemetry and agentic risk

Overview

This skill does what it advertises: it queries train tickets, station transport, and hotels using external travel, map, and 12306 services.

Reasonable to install if you are comfortable sharing travel routes, addresses, dates, and hotel preferences with external travel/map/AI services. Avoid putting highly sensitive personal details into hotel requests, and verify booking links and prices before purchasing.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
  • Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
Findings (3)

Missing User Warnings

Medium
Confidence
95% confidence
Finding
The skill sends user-supplied travel queries, addresses, station names, and city data to third-party proxy endpoints and external services, but the user-facing responses and tool descriptions do not disclose that this data leaves the platform. This creates a privacy and consent issue, especially because origin/destination and lodging requests can reveal sensitive travel plans and locations.

Missing User Warnings

Low
Confidence
88% confidence
Finding
The code fetches station metadata and later queries 12306 using user-derived route and date information without informing the user that an external railway service is contacted. While this is expected for ticket lookup, it still exposes user travel intent to a third party without explicit notice.

Ssd 3

Medium
Confidence
96% confidence
Finding
The hotel recommendation function forwards the user's natural-language query verbatim to an external AI search service. Free-form hotel requests often include sensitive details such as travel dates, family composition, budget, medical/accessibility needs, or precise neighborhoods, so transmitting them unfiltered increases privacy leakage risk.

VirusTotal

65/65 vendors flagged this skill as clean.

View on VirusTotal