ClawHub

Mobile Plan Switch手机省钱流量套餐

Security checks across malware telemetry and agentic risk

Overview

This skill is mostly a mobile-plan savings guide, but it steers users to a third-party SIM-card shop where sensitive identity details may be required without enough privacy or commercial disclosure.

Review the third-party card application link carefully before installing or using this skill. Treat the data-card recommendations as potentially commercial, verify the provider independently, and do not submit name, ID number, phone number, or shipping address unless you trust the enrollment page and understand who receives the data.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • MCP Tool PoisoningHidden Instructions, Unicode Deception, Parameter Description Injection
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Findings (3)

Description-Behavior Mismatch

Medium
Confidence
93% confidence
Finding
The script’s operational behavior includes driving users to an external commercial shop link and printing promotional sharing instructions, which exceeds a narrowly framed 'plan-switch guidance' function and introduces undisclosed monetization/redirection behavior. In a user-assistance skill, hidden or weakly disclosed affiliate promotion is risky because users may be steered to third-party purchases under the guise of neutral advice.

Missing User Warnings

Medium
Confidence
83% confidence
Finding
The skill tells users to complete real-name SIM registration and provide accurate ID information, while also directing them to an external application link, but it lacks a clear privacy warning, trust boundary explanation, or guidance on minimizing sensitive-data exposure. This is risky because users may be funneled into submitting government ID and personal data through third-party flows without informed consent or verification of data handling practices.

Missing User Warnings

Medium
Confidence
95% confidence
Finding
The QR-code generation function sends the full destination URL to a third-party service via a GET request, exposing link contents and associated referral/tracking parameters to an external provider without notice. Even if the URL is not highly sensitive here, transmitting user-targeted commerce links to another service creates unnecessary data leakage and third-party dependency.

VirusTotal

63/63 vendors flagged this skill as clean.

View on VirusTotal