Skill Trust Decision
Novai360 智能市场分析
Skill claims to provide e-commerce analytics but connects to an opaque third-party API (api.novai360.com) with unverifiable data handling claims and suspicious rebranding language in changelog.
Why this conclusion was reached
0/4 dimensions flagged Pass
Declared vs actual capability
Declared resources and inferred behavior are broadly aligned.
Review
Hidden execution and egress
1 lower-risk artifacts were extracted and still need context.
Pass
Attack chain and severe findings
There is no explicit malicious chain in the report.
Review
Dependencies and supply chain hygiene
Dependency information is incomplete, so supply-chain confidence stays limited.
What drove the risk score up
Undeclared network access to third-party API +15
SKILL.md claims 'real-time market data' but does not explicitly declare the external API endpoint api.novai360.com
Unverifiable privacy claims +12
Claims '数据均经过加密处理' and '符合国际数据保护标准' without technical verification or audit evidence
Suspicious rebranding language +10
CHANGELOG.md contains '技术包装: 隐藏所有技术栈细节' - concerning obfuscation language for a legitimate service
No authentication mechanism +8
Skill claims '无需 API Key,直接使用' but relies on opaque third-party service with no user authentication
Most important evidence
Medium Doc Mismatch
Undeclared network access to third-party API
SKILL.md claims to provide '真实的市场数据获取' (real market data) but does not explicitly declare the external API endpoint https://api.novai360.com. The actual implementation sends user messages, session context, and potentially sensitive query data to this opaque third-party service.
index-v7.js:89 Explicitly declare the external API endpoint in SKILL.md and provide transparency on what data is transmitted.
Medium Doc Mismatch
Unverifiable privacy and encryption claims
SKILL.md states '所有查询数据均经过加密处理' and '符合国际数据保护标准' without providing any technical details, audit evidence, or third-party certifications. These appear to be marketing claims rather than verifiable security assertions.
SKILL.md:38 Provide technical details on encryption methods (TLS version, encryption at rest, etc.) or remove unverifiable claims.
Medium Doc Mismatch
Suspicious rebranding language in changelog
CHANGELOG.md contains '技术包装: 隐藏所有技术栈细节,统一 Novai360 标识' (technical packaging: hide all technical stack details, unify Novai360 branding). This language is atypical for legitimate open-source or commercial tools and suggests intentional obfuscation of the underlying technology.
CHANGELOG.md:8 Review if this language indicates hidden functionality or third-party dependency obfuscation.
Low Priv Escalation
No authentication mechanism
The skill claims '无需 API Key,直接使用' (no API key needed, direct use) and relies on an opaque third-party service. There is no user authentication, rate limiting mechanism visible in code, or accountability for data access.
manifest.json:18 Clarify how user authentication and data access control is handled by the external service.
Low Supply Chain
Third-party API dependency with no vetting
The skill depends entirely on api.novai360.com, a third-party service with no verifiable reputation, uptime guarantees, or security audits. Code structure suggests no fallback or error handling for API failures beyond basic try-catch.
index-v7.js:33 Provide information about the API service provider, their data handling policies, and consider offering on-premise or self-hosted alternatives.
Declared capability vs actual capability
Network Pass
Declared NONE
→ Inferred READ
index-v7.js:89 - fetch('https://api.novai360.com/chat', ...) Filesystem Pass
Declared NONE
→ Inferred NONE
No filesystem access detected Shell Pass
Declared NONE
→ Inferred NONE
No shell execution detected Environment Pass
Declared NONE
→ Inferred NONE
No environment variable access detected Clipboard Pass
Declared NONE
→ Inferred NONE
No clipboard access detected Browser Pass
Declared NONE
→ Inferred NONE
No browser access detected Database Pass
Declared NONE
→ Inferred NONE
No database access detected Suspicious artifacts and egress
Medium External URL
https://api.novai360.com index-v7.js:33
Dependencies and supply chain
There are no structured dependency warnings.
File composition
5 files · 784 lines
JavaScript 2 files · 626 linesMarkdown 2 files · 98 linesJSON 1 files · 60 lines
Files of concern · 4
index-v7.js Undeclared network access to third-party API · Third-party API dependency with no vetting · https://api.novai360.com
manifest.json No authentication mechanism
SKILL.md Unverifiable privacy and encryption claims
CHANGELOG.md Suspicious rebranding language in changelog
Other files · index.js
Security positives
No shell execution or command injection vulnerabilities detected
No filesystem access beyond standard module exports
No credential harvesting or sensitive file access
No base64-encoded payloads or obfuscation in code
No hidden HTML/JS injection vectors
Clean JavaScript code with standard fetch() API calls
No reverse shell, C2, or data theft patterns
No cron/scheduled tasks or persistence mechanisms