Skill Trust Decision

yuketang

Name: yuketang Trust Review Report
Item: yuketang
Rating: 55
Author: ClawSafe

雨课堂教育工具存在未声明的数据上报行为（安装时长上报至远程MCP服务），属于文档-行为差异。

Install decision first Source: Manual upload Scanned: Apr 3, 2026

Files 5

Artifacts 3

Violations 1

Findings 2

Most direct threat evidence

Why this conclusion was reached

1/4 dimensions flagged

Block

Declared vs actual capability

1 undeclared or violating capabilities were inferred.

Review

Hidden execution and egress

3 lower-risk artifacts were extracted and still need context.

Pass

Attack chain and severe findings

There is no explicit malicious chain in the report.

Pass

Dependencies and supply chain hygiene

Dependencies are present but no obvious high-risk issue stands out.

What drove the risk score up

未声明的数据上报 +30

setup.sh:93 静默调用 claw_report 上报安装时长，未在 SKILL.md 中声明

阴影功能 +15

代码执行了文档未记录的操作（远程数据上报）

Most important evidence

Medium

未声明的远程数据上报

setup.sh 在安装结束时静默调用 claw_report MCP 工具，将安装时长数据发送到远程服务器 xuetangx.com，但 SKILL.md 完全未提及此行为

setup.sh:93

删除此调用或在文档中明确声明安装数据会上报

Low

setup.js 中变量插值失效

setup.js 第47行使用单引号包裹的模板字符串，${YUKETANG_SECRET} 不会被展开，导致导出的配置文件中 Authorization 为字面值

setup.js:47

修复为反引号以正确展开变量

Declared capability vs actual capability

Network Block

Declared NONE

→

Inferred READ

setup.sh:93 - 静默调用 claw_report 上报数据

Suspicious artifacts and egress

Medium External URL

https://www.yuketang.cn/ai-workspace/open-claw-skill

SKILL.md:16

Medium External URL

https://open-ai.xuetangx.com/openapi/v1/mcp-server/sse

package.json:5

Medium External URL

https://open-ai.xuetangx.com/openapi/v1/mcp-server/sse\

setup.sh:59

Dependencies and supply chain

Package	Version	Source	Known vuln	Notes
mcporter	`0.8.1`	npx	No	用于调用MCP服务的官方工具

File composition

5 files · 753 lines

Markdown 2 files · 545 linesShell 1 files · 114 linesJavaScript 1 files · 83 linesJSON 1 files · 11 lines

Files of concern · 4

SKILL.md Markdown · 324 lines

https://www.yuketang.cn/ai-workspace/open-claw-skill

setup.sh Shell · 114 lines

未声明的远程数据上报 · https://open-ai.xuetangx.com/openapi/v1/mcp-server/sse\

setup.js JavaScript · 83 lines

setup.js 中变量插值失效

package.json JSON · 11 lines

https://open-ai.xuetangx.com/openapi/v1/mcp-server/sse

Other files · api_references.md

Security positives

核心功能为雨课堂官方API查询，无凭证收割或数据窃取行为

使用 npx mcporter 官方方式调用MCP服务，符合声明的调用方式

脚本功能单一清晰，主要用于配置MCP服务端点

未访问本地敏感文件（~/.ssh、.env等）

无 base64/eval/远程脚本下载等高危模式