Skill flagged — suspicious patterns detected
ClawHub Security flagged this skill as suspicious. Review the scan results before using.
uniqlo-price-watch
v1.0.0跟踪 UNIQLO 网站(uniqlo.cn)上的产品价格,将用户关注的商品持久化存储在你的工作目录下 uniqlo/uniqlo-price-watch.csv 中,如果文件缺失则自动创建,并在回答用户前将当前官方产品页面价格与保存的基准价格进行比较。
⭐ 0· 80·0 current·0 all-time
by@yjy233
MIT-0
Download zip
LicenseMIT-0 · Free to use, modify, and redistribute. No attribution required.
Security Scan
OpenClaw
Suspicious
medium confidencePurpose & Capability
Name/description (price watcher for uniqlo.cn) matches included code and instructions: a local CSV is maintained and a scraper is provided. However the skill runtime expects a FireCrawl API key and will call a FireCrawl scrape endpoint; the registry metadata declares no required env vars/credentials, so an important runtime dependency (FIRECRAWL_API_KEY) is undeclared.
Instruction Scope
SKILL.md instructs the agent to run the bundled script or use a browser tool to fetch product pages and to persist entries to uniqlo/uniqlo-price-watch.csv. The scraper path will POST the target URL to a third‑party service (api.firecrawl.dev) and return page markdown. Transmitting the target URL/page content to an external API is within the scraping purpose but is a data‑exfiltration surface the user should be aware of; SKILL.md does mention FIRECRAWL_API_KEY but does not flag the privacy/third‑party aspect prominently.
Install Mechanism
Instruction-only skill with one included script file. There is no download/install from remote hosts and no package installs — minimal risk from install mechanism.
Credentials
The script requires an API key (FIRECRAWL_API_KEY or alias FIRECRAWL-API-KEY) and optionally FIRECRAWL_API_URL and FIRECRAWL_TIMEOUT_MS, but the skill metadata lists no required env vars or primary credential. Asking for or reading an API key is reasonable for using a paid scraping service, but the undeclared credential is an inconsistency and giving an API key to the skill (or storing it in environment) grants a third‑party service access to the URLs/pages you query.
Persistence & Privilege
The skill writes a persistent CSV file into the agent's working directory (uniqlo/uniqlo-price-watch.csv). always is false and the skill does not request elevated platform privileges. Persistent local storage is expected for a watcher but users should know data will be stored on disk.
What to consider before installing
This skill appears to implement a legit Uniqlo price-watcher, but note two important issues before installing:
- The bundled scraper posts your target URL (and effectively page content) to a third‑party API at api.firecrawl.dev and requires a FireCrawl API key. The registry metadata did not declare this required env var, so the skill may fail unless you provide a key or the agent asks you to paste one. Only provide an API key if you trust FireCrawl and understand their privacy/usage policy.
- The skill will create and update a local CSV file at uniqlo/uniqlo-price-watch.csv in the agent working directory. If you care about sensitive info in that file, inspect or relocate it.
Recommendations:
- If you prefer not to send URLs/page content to an external service, refuse to provide a FIRECRAWL_API_KEY and use the browser scraping fallback described in SKILL.md (or ask the maintainer to remove the remote API usage).
- Verify the trustworthiness and terms of api.firecrawl.dev before supplying keys. If you must supply a key, create a limited/low‑privilege key or use an account dedicated to this purpose.
- Ask the skill author/registry to update metadata to declare FIRECRAWL_API_KEY as a required env var and to clearly document that page content is sent to FireCrawl.firecrawl-scrape.mjs:60
Environment variable access combined with network send.
Patterns worth reviewing
These patterns may indicate risky behavior. Check the VirusTotal and OpenClaw results above for context-aware analysis before installing.Like a lobster shell, security has layers — review code before you run it.
latestvk97akxbf40hjan30etm03egknx83ccn1
License
MIT-0
Free to use, modify, and redistribute. No attribution required.