v1.0.0

闪兑骑士 Flash Redeem Knight

BenignClawScan verdict for this skill. Analyzed May 1, 2026, 5:42 AM.

Analysis

This is a coherent instruction-only browser automation skill for redeeming prepaid coupons, with the main caution that it can consume a voucher and return sensitive pickup-code evidence.

GuidanceInstall only if you want the agent to redeem prepaid H5 coupons for you. Confirm the coupon is already paid, verify the selected store and items, and be cautious about saving reusable preferences that allow redemption without fresh confirmation.

Findings (3)

Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.

Abnormal behavior control

Checks for instructions or behavior that redirect the agent, misuse tools, execute unexpected code, cascade across systems, exploit user trust, or continue outside the intended task.

Tool Misuse and Exploitation

SeverityLowConfidenceHighStatusNote

SKILL.md

用 `browser` 打开兑换链接。 ... 点击“兑换/确认”后等待 10–20 秒。

The skill directs browser automation to click through a redemption flow. This is purpose-aligned and includes safeguards, but browser clicks can complete real-world actions.

User impactAutomated clicks may finalize a redemption once the user authorizes the task.

RecommendationReview the selected store, items, pickup mode, and payment amount before allowing final confirmation.

Permission boundary

Checks whether tool use, credentials, dependencies, identity, account access, or inter-agent boundaries are broader than the stated purpose.

Identity and Privilege Abuse

SeverityMediumConfidenceHighStatusNote

SKILL.md

确认用户授权可消耗本次券。

The skill is explicitly designed to use the user's delegated authority to consume a prepaid voucher. This is expected for the purpose, but it is still a meaningful permission boundary because redemption may be irreversible.

User impactIf used on the wrong link, store, or options, the agent could consume a prepaid coupon in a way the user did not intend.

RecommendationOnly provide coupon links you intend to redeem, and keep the authorization and no-extra-payment confirmation steps enabled.

Sensitive data protection

Checks for exposed credentials, poisoned memory or context, unclear communication boundaries, or sensitive data that could leave the user's control.

Memory and Context Poisoning

SeverityLowConfidenceMediumStatusNote

references/profile-template.md

按用户/场景记录可复用参数（避免每次重复确认）。 ... geolocation_hint: ... can_consume_coupon_without_extra_confirmation: true/false

The template encourages reusable profile data that can influence future redemptions, including location hints and whether extra confirmation is needed.

User impactIncorrect or stale saved preferences could lead to the wrong store or an overly permissive confirmation policy in later redemptions.

RecommendationKeep reusable profiles narrow, avoid setting blanket permission to consume coupons without confirmation, and periodically review stored store/location preferences.