ClawHub

amap-location

Security checks across malware telemetry and agentic risk

Overview

This is a coherent AMap location skill, but users should expect location queries and generated maps to go through AMap and local temporary storage.

Install only if you are comfortable using an AMap API key and sending addresses, coordinates, route endpoints, and POI search terms to AMap. Use a dedicated API key if possible, verify any wrapper commands before relying on them, and manually delete generated map images if your workflow does not clean them up.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • MCP Least PrivilegeUnderdeclared Capability, Wildcard Permission, Missing Permission Declaration
  • MCP Tool PoisoningHidden Instructions, Unicode Deception, Parameter Description Injection
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Findings (4)

Lp3

Medium
Category
MCP Least Privilege
Confidence
95% confidence
Finding
The skill clearly requires access to environment variables and external network services, yet no permissions are declared. This creates a transparency and policy-enforcement gap: a host may permit execution without understanding that secrets are read from a local env file and user data is sent to an external API.

Tp4

High
Category
MCP Tool Poisoning
Confidence
86% confidence
Finding
The skill’s declared purpose emphasizes routing and POI search, but the documented behavior also includes geocoding, reverse geocoding, static map retrieval, and local file generation/cleanup. This mismatch reduces informed consent and can cause users or platform policy to underestimate what data is processed, stored, or transmitted.

Missing User Warnings

Medium
Confidence
97% confidence
Finding
The skill accepts precise addresses and coordinates but does not warn users that this sensitive location data is sent to AMap, an external third-party service. Location data can reveal home, work, travel patterns, or other sensitive personal information, so omission of this disclosure undermines privacy expectations and consent.

Missing User Warnings

Medium
Confidence
90% confidence
Finding
The code transmits user-provided location and search keywords to the external AMap API, which can expose sensitive geolocation and behavioral data to a third party without any explicit disclosure or consent mechanism in the tool itself. In a location skill this data sharing is functionally necessary, but it still creates a real privacy risk because precise coordinates may reveal home/work locations or user habits.

VirusTotal

62/62 vendors flagged this skill as clean.

View on VirusTotal