Is dboy233/amap safe?

Every geographic query made through this skill — including user addresses, coordinates, travel routes, and city names — is transmitted to restapi.amap.com, operated by AutoNavi (a wholly-owned Alibaba subsidiary). This is expected and inherent behavior for a maps API skill, but users should be aware their location data is processed on Chinese servers subject to PRC data regulations and government access obligations. This is a data sovereignty concern, not malicious exfiltration.

The AMAP_KEY is interpolated directly into curl URL strings as a query parameter (key=$AMAP_KEY). This is standard practice for the Amap Web Service API but means the key appears in HTTP access logs, reverse proxy logs, tcpdump captures, and shell history. An agent with shell logging could inadvertently leak the key.

The installation process was entirely clean. Only the two expected files were written to disk. All network traffic was to GitHub for the sparse checkout. No unexpected processes were spawned, no persistent connections established, and no files were modified outside the skill directory.

The monitoring logs record reads of canary files (.env, .ssh/id_rsa, .aws/credentials, .npmrc, .docker/config.json, gcloud credentials) at two points in the session. Timing analysis confirms both sets of reads are from the oathe audit framework: the first batch (audit 1771941167.221) occurs 5 seconds before the git clone begins, and the second batch (audit 1771941184.691) aligns with the post-scan phase. The skill itself contains no code capable of reading these files.

SKILL.md is written in Simplified Chinese. Full content was reviewed and translated. The skill contains only legitimate API documentation, appropriate trigger conditions for geographic queries, and standard curl examples. No hidden instructions in any language were found.