kuaidi-query Security Report — High Risk | ClawSafe

68 /100

kuaidi-query

Query logistics tracking information via Track123 API

This skill contains critical security issues including exposed real API credentials in config.json, undeclared filesystem and network access, and a vulnerable dependency with unpinned axios version.

Skill Namekuaidi-query

Duration36.8s

Enginepi

⛔

Do not install this skill

Remove config.json immediately, add allowed-tools declaration for network:READ and filesystem:READ/WRITE, pin axios version, and do not commit credentials to version control.

Findings 5 items

Severity	Finding	Location
Critical	Hardcoded API Credentials Exposed Credential Theft Real Track123 API credentials are hardcoded in config.json with app_key and api_secret values. These credentials are committed to the repository and publicly visible. `"app_key": "120cb954891a4d9aa1418c7012225afb", "api_secret": "120cb954891a4d9aa1418c7012225afb"` → Remove config.json from repository, add it to .gitignore, and use environment variables or a secrets manager for credentials	`config.json:2`
High	Undeclared Network Access Priv Escalation The skill makes HTTPS requests to api.track123.com but SKILL.md does not declare network:READ capability in allowed-tools mapping `const API_BASE = 'https://api.track123.com/gateway/open-api/tk/v2';` → Add network:READ to allowed-tools declaration in SKILL.md metadata	`scripts/query.js:56`
High	Undeclared Filesystem Access Priv Escalation The skill reads config.json and writes .cache.json without declaring filesystem:READ/WRITE capabilities `fs.readFileSync(CONFIG_PATH, 'utf-8')` → Add filesystem:READ and filesystem:WRITE to allowed-tools declaration	`scripts/query.js:37`
Medium	Unpinned Dependency Version Supply Chain axios dependency uses ^1.13.6 which allows automatic updates to higher minor/patch versions that could contain security vulnerabilities `"axios": "^1.13.6"` → Pin axios to exact version: "axios": "1.13.6" or use a lockfile	`package.json:9`
Low	API Endpoint Mismatch Doc Mismatch Reference docs show v2.1 API endpoints but code uses v2. Authentication method also differs (app_key in body vs Track123-Api-Secret header) `Docs: /tk/v2.1/track/query-realtime, Code: /tk/v2/track/query` → Ensure documentation matches implementation	`references/track123-api.md vs scripts/query.js`

Resource	Declared	Inferred	Status	Evidence
Network	`NONE`	`READ`	✗ Violation	scripts/query.js:56 - axios.post to api.track123.com
Filesystem	`NONE`	`READ`	✗ Violation	scripts/query.js:37 - fs.readFileSync(CONFIG_PATH)
Filesystem	`NONE`	`WRITE`	✗ Violation	scripts/query.js:79 - fs.writeFileSync(CACHE_PATH)

28 findings

🔗

Medium External URL 外部 URL

https://www.track123.com/

SKILL.md:155

🔗

Medium External URL 外部 URL

https://registry.npmmirror.com/asynckit/-/asynckit-0.4.0.tgz

package-lock.json:17

🔗

Medium External URL 外部 URL

https://registry.npmmirror.com/axios/-/axios-1.13.6.tgz

package-lock.json:23

🔗

Medium External URL 外部 URL

https://registry.npmmirror.com/call-bind-apply-helpers/-/call-bind-apply-helpers-1.0.2.tgz

package-lock.json:34

🔗

Medium External URL 外部 URL

https://registry.npmmirror.com/combined-stream/-/combined-stream-1.0.8.tgz

package-lock.json:47

🔗

Medium External URL 外部 URL

https://registry.npmmirror.com/delayed-stream/-/delayed-stream-1.0.0.tgz

package-lock.json:59

🔗

Medium External URL 外部 URL

https://registry.npmmirror.com/dunder-proto/-/dunder-proto-1.0.1.tgz

package-lock.json:68

🔗

Medium External URL 外部 URL

https://registry.npmmirror.com/es-define-property/-/es-define-property-1.0.1.tgz

package-lock.json:82

🔗

Medium External URL 外部 URL

https://registry.npmmirror.com/es-errors/-/es-errors-1.3.0.tgz

package-lock.json:91

🔗

Medium External URL 外部 URL

https://registry.npmmirror.com/es-object-atoms/-/es-object-atoms-1.1.1.tgz

package-lock.json:100

🔗

Medium External URL 外部 URL

https://registry.npmmirror.com/es-set-tostringtag/-/es-set-tostringtag-2.1.0.tgz

package-lock.json:112

🔗

Medium External URL 外部 URL

https://registry.npmmirror.com/follow-redirects/-/follow-redirects-1.15.11.tgz

package-lock.json:127

🔗

Medium External URL 外部 URL

https://registry.npmmirror.com/form-data/-/form-data-4.0.5.tgz

package-lock.json:147

🔗

Medium External URL 外部 URL

https://registry.npmmirror.com/function-bind/-/function-bind-1.1.2.tgz

package-lock.json:163

🔗

Medium External URL 外部 URL

https://registry.npmmirror.com/get-intrinsic/-/get-intrinsic-1.3.0.tgz

package-lock.json:172

🔗

Medium External URL 外部 URL

https://registry.npmmirror.com/get-proto/-/get-proto-1.0.1.tgz

package-lock.json:196

🔗

Medium External URL 外部 URL

https://registry.npmmirror.com/gopd/-/gopd-1.2.0.tgz

package-lock.json:209

🔗

Medium External URL 外部 URL

https://registry.npmmirror.com/has-symbols/-/has-symbols-1.1.0.tgz

package-lock.json:221

🔗

Medium External URL 外部 URL

https://registry.npmmirror.com/has-tostringtag/-/has-tostringtag-1.0.2.tgz

package-lock.json:233

🔗

Medium External URL 外部 URL

https://registry.npmmirror.com/hasown/-/hasown-2.0.2.tgz

package-lock.json:248

🔗

Medium External URL 外部 URL

https://registry.npmmirror.com/math-intrinsics/-/math-intrinsics-1.1.0.tgz

package-lock.json:260

🔗

Medium External URL 外部 URL

https://registry.npmmirror.com/mime-db/-/mime-db-1.52.0.tgz

package-lock.json:269

🔗

Medium External URL 外部 URL

https://registry.npmmirror.com/mime-types/-/mime-types-2.1.35.tgz

package-lock.json:278

🔗

Medium External URL 外部 URL

https://registry.npmmirror.com/proxy-from-env/-/proxy-from-env-1.1.0.tgz

package-lock.json:290

🔗

Medium External URL 外部 URL

https://api.track123.com/gateway/open-api/tk/v2.1

references/track123-api.md:5

🔗

Medium External URL 外部 URL

https://api.track123.com/gateway/open-api/tk/v2.1/track/query-realtime

references/track123-api.md:47

🔗

Medium External URL 外部 URL

https://docs.track123.com/

references/track123-api.md:258

🔗

Medium External URL 外部 URL

https://api.track123.com/gateway/open-api/tk/v2

scripts/query.js:21

File Tree

9 files · 42.9 KB · 1670 lines

Markdown 3f · 820L JavaScript 1f · 525L JSON 5f · 325L

├─ ▾ 📁 references

│ ├─ 📝 examples.md Markdown 337L · 6.2 KB

│ └─ 📝 track123-api.md Markdown 260L · 5.5 KB

├─ ▾ 📁 scripts

│ └─ 📜 query.js JavaScript 525L · 15.7 KB

├─ 📋 _meta.json JSON 5L · 131 B

├─ 📋 config.example.json JSON 7L · 121 B

├─ 🔑 config.json ⚠ JSON 8L · 175 B

├─ 📋 package-lock.json JSON 295L · 10.1 KB

├─ 📋 package.json JSON 10L · 222 B

└─ 📝 SKILL.md Markdown 223L · 4.8 KB

Dependencies 1 items

Package	Version	Source	Known Vulns	Notes
`axios`	`^1.13.6`	npm	No	Version not pinned, uses caret range allowing updates

Security Positives

✓ Skill implements basic security practices like input validation for carrier codes

✓ API credentials are validated before use with error messages

✓ Caching mechanism uses timestamps to prevent stale data

✓ No reverse shell, C2 communication, or obvious malicious behavior detected

✓ Uses standard axios library instead of custom network code

Scan Report

Findings 5 items

File Tree

Dependencies 1 items

Security Positives