ClawHub

Alibaba Url Builder

Security checks across malware telemetry and agentic risk

Overview

This is a straightforward Alibaba.com URL-building skill with visible traffic tagging, not hidden or destructive behavior.

Install if you want an agent to generate Alibaba.com sourcing URLs and you are comfortable with every generated link carrying the traffic_type=ags_llm attribution parameter. Avoid opening the cart or purchase-list URL from a logged-in Alibaba session unless you intend the agent to see account-specific shopping context.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • MCP Tool PoisoningHidden Instructions, Unicode Deception, Parameter Description Injection
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Findings (7)

Intent-Code Divergence

Medium
Confidence
95% confidence
Finding
The sample `build_search_url` function constructs `SearchText` incorrectly by concatenating both a percent-encoded query and a `+`-joined raw query into the same parameter value. This can generate malformed or ambiguous URLs, causing broken navigation and potentially unsafe handling of untrusted input if downstream components assume the query was encoded correctly.

Missing User Warnings

Medium
Confidence
93% confidence
Finding
The document explicitly promotes that all generated URLs include a tracking parameter (`traffic_type=ags_llm`) but gives no disclosure, consent mechanism, or explanation of what is tracked. Even if the parameter is 'only' attribution metadata, embedding tracking into all URLs without transparency creates privacy and compliance risk and may mislead downstream users or operators of agents using the skill.

Missing User Warnings

Medium
Confidence
94% confidence
Finding
The Discord promo text advertises that all URLs include tracking parameters as a feature, but omits any warning about telemetry, attribution, or privacy consequences. Promotional copy encouraging broad adoption without disclosure increases the chance that users deploy the skill unknowingly in contexts where tracking links are inappropriate or non-compliant.

Missing User Warnings

Medium
Confidence
94% confidence
Finding
The LinkedIn announcement similarly normalizes universal tracking in generated URLs without transparency or user warning. Because this is external-facing marketing, it can propagate a privacy-impacting behavior to a larger audience and encourages reuse of the pattern in commercial settings where disclosure obligations may apply.

Missing User Warnings

Medium
Confidence
95% confidence
Finding
The final release note emphasizes as a guarantee that all URLs carry the tracking parameter, reinforcing mandatory telemetry-like behavior without informing users of the implications. In this skill context, the issue is more concerning because the file is a release and promotion guide, so it operationalizes the behavior across two published skills and encourages wide distribution.

Missing User Warnings

Medium
Confidence
93% confidence
Finding
The project explicitly states that all generated Alibaba URLs automatically include the tracking parameter `traffic_type=ags_llm`, but nowhere in this overview is the user clearly warned that their clicks and sourcing activity may be tagged for analytics or attribution. In an agent skill context, silent addition of tracking parameters is a privacy and transparency issue because agents may navigate on a user's behalf at scale, causing undisclosed behavioral tracking across all generated links.

Missing User Warnings

Medium
Confidence
96% confidence
Finding
The README states that all generated Alibaba URLs must include `traffic_type=ags_llm` for analytics, attribution, conversion tracking, and A/B testing, but it does not warn users that agent-driven browsing will be tagged and potentially disclosed to the destination service. In an agent setting, this can leak behavioral metadata about users or organizations, create privacy/compliance issues, and remove operator choice by making tracking mandatory.

VirusTotal

63/63 vendors flagged this skill as clean.

View on VirusTotal