微博热点
Security checks across malware telemetry and agentic risk
Overview
This skill fetches Weibo hot-topic data from one disclosed API and only offers optional scheduled updates with user approval.
Before installing, consider whether you trust hotspot.api4claw.com to receive timestamped requests. Leave the optional daily cron setup disabled unless you want automated polling, and review any generated cron command before approving it.
SkillSpector
By NVIDIA
Vulnerability Patterns
- Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
- Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
- Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
- Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
- Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
VirusTotal
65/65 vendors flagged this skill as clean.