ClawHub

采招网招标查询

Security checks across malware telemetry and agentic risk

Overview

This skill is a disclosed Bidcenter procurement-search helper that sends search terms to bidcenter.com.cn and does not show hidden persistence, local data access, or destructive behavior.

Install this if you want Bidcenter procurement searches from the agent. Prefer invoking it explicitly with 采招网 or bidcenter, and avoid sending confidential bid strategy, internal supplier details, or sensitive business plans as search keywords unless you are comfortable sharing those queries with bidcenter.com.cn.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Trigger AbuseOverly Broad Trigger, Shadow Command Trigger, Keyword Baiting Trigger
  • MCP Least PrivilegeUnderdeclared Capability, Wildcard Permission, Missing Permission Declaration
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Findings (4)

Lp3

Medium
Category
MCP Least Privilege
Confidence
89% confidence
Finding
The skill documentation clearly describes network-backed behavior by calling `scripts/main.js` to query bidcenter.com.cn, yet no declared permissions are present. This creates a transparency and policy-control gap: the host may not enforce or review network use correctly, and users or operators cannot easily assess what external access the skill requires.

Vague Triggers

Medium
Confidence
90% confidence
Finding
The trigger list contains broad procurement terms such as '招标', '招标信息', and '采购公告', which are likely to appear in ordinary conversation. This can cause unintended activation of the skill, leading to unnecessary external queries, context hijacking, or the wrong tool being invoked when the user did not explicitly request this source.

Vague Triggers

Medium
Confidence
88% confidence
Finding
The auto-trigger section defines broad scenarios like '查询招标信息' and '按地区筛选' without specifying when the skill should not run or when another source/tool would be more appropriate. Ambiguous routing increases the chance of accidental invocation and unnecessary transmission of user-supplied search terms to an external site.

Overly Broad Trigger

Low
Category
Trigger Abuse
Confidence
93% confidence
Finding
The trigger '招标' is a single, very common term that can appear in many unrelated or high-level discussions about procurement. A trigger this short materially increases accidental activation risk, which can misroute user requests and initiate unintended network lookups.

VirusTotal

64/64 vendors flagged this skill as clean.

View on VirusTotal