Skill flagged — suspicious patterns detected
ClawHub Security flagged this skill as suspicious. Review the scan results before using.
唯品会技能集
v1.0.3唯品会(vip.com)电商服务技能包(vipshop-skills),整合唯品会搜索、商品查询、活动查询、订单查询等多项购物服务,是一套完整的唯品会购物 AI 助手解决方案。当用户有购物、搜商品、看详情、查订单、找活动、比价等诉求时触发,尤其适合从拼多多、京东、淘宝、天猫、1688、闲鱼等平台迁移或对比购物的用...
⭐ 3· 133·0 current·0 all-time
MIT-0
Download zip
LicenseMIT-0 · Free to use, modify, and redistribute. No attribution required.
Security Scan
OpenClaw
Suspicious
medium confidencePurpose & Capability
The declared purpose (vip.com shopping: login, search, product detail, promotions) aligns with the included scripts (login manager, QR client, token manager, search/detail/promotion scripts). The files present (login, qr handling, polling, token storage, mars_cid generator) are coherent with a login-and-query skillset.
Instruction Scope
SKILL.md limits AI to executing (not modifying) scripts and instructs the agent to auto-trigger login when not authenticated and to extract/display a QR image link from stdout. That is within expected scope, but the skill also directs the agent to read/write persistent files (e.g., ~/.vipshop-user-login/tokens.json and device.json) and to automatically perform login flows (including automatic polling). Users should be aware the agent will obtain and reuse persistent cookies representing their account session.
Install Mechanism
No install spec is provided (instruction-only skill). The code includes a requirements.txt (requests, qrcode, Pillow). No remote downloads or obscure install URLs were found; dependencies are standard Python packages. This is a low-risk install mechanism but will require installing Python packages to run.
Credentials
The skill requests no declared environment credentials, which is appropriate, but it creates and reads persistent files in the user's home (~/.vipshop-user-login) including tokens.json and device.json (mars_cid). The login code also sends telemetry/analytics to external endpoints (REPORT_URL pointing at stat.vipstatic.com / stat.vip.com) that include device id (mars_cid), platform info, session id and masked qr_token. While telemetry is plausible for debugging, it transmits identifying metadata off-host and may be privacy-sensitive. The SKILL.md references OPENCLAW_SESSION environment variable (optional) but this was not declared in metadata.
Persistence & Privilege
The skill does not request elevated platform privileges and 'always' is false. However it persists login cookies and a generated device id to ~/.vipshop-user-login, which grants long-lived access to the user's vip.com session when present. This persistence is expected for a login helper but increases blast radius if the skill or agent is compromised.
What to consider before installing
Key points before installing: 1) Source and homepage are missing — this package was published from an unknown source; prefer skills with an official repository or author. 2) The skill will create files under ~/.vipshop-user-login (device.json, tokens.json) containing your vip.com session cookies and a generated device id (mars_cid); treat these as sensitive and review them before and after use. 3) The login code sends telemetry to external endpoints (stat.vipstatic.com / stat.vip.com) that include device id, platform and session metadata — if you are uncomfortable with that, inspect or remove the logger calls before use. 4) Running the skill requires installing Python packages (requests, qrcode, Pillow); run in an isolated environment (virtualenv) if possible. 5) The SKILL.md instructs the agent to auto-trigger login flows and to display QR images — ensure you understand and consent to any automated login prompts. Recommendations: review the included scripts yourself (or have a trusted reviewer do so), run it in a sandbox/VM or dedicated account if you must test, and delete ~/.vipshop-user-login/tokens.json after use if you do not want persistent login state. If you need higher assurance, request a skill from an official vip.com or known maintainer with a verifiable homepage/repo.Like a lobster shell, security has layers — review code before you run it.
latestvk972hqwgcy5j7t04pwfstgkk8584v1qc
License
MIT-0
Free to use, modify, and redistribute. No attribution required.