久吾消息网关
PassAudited by ClawScan on May 10, 2026.
Overview
This skill appears to do what it says—send internal company messages through a gateway—but users should verify the gateway, recipients, and content before using it for real or bulk notifications.
Use this skill only if the Jiuwu message gateway is trusted and correctly configured. Set JIUWU_MESSAGE_GATEWAY_URL for your environment, prefer HTTPS or a protected internal network, and double-check recipients and message content before sending, especially for batch notifications.
Findings (3)
Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.
A mistaken or overbroad request could send an internal notice to multiple employees.
The skill intentionally supports sending messages to multiple employee IDs in one call. This matches the stated purpose, but it can create real internal communications at scale.
多个工号用英文逗号分隔: python scripts/send_message.py -c "1112,1113,1114" -t "会议通知:今天下午2点开会" -tt "会议提醒"
Confirm recipient employee IDs and message text before invoking the skill, especially for batch sends.
Message contents may traverse the configured network path without TLS if the default HTTP gateway is used.
The gateway destination is configurable but defaults to a plain HTTP private-network URL. The script sends recipient codes and message text to that gateway.
return os.environ.get("JIUWU_MESSAGE_GATEWAY_URL", "http://192.168.1.213:5000")Use this only with a trusted internal gateway, preferably over HTTPS or a protected network, and avoid sending sensitive content unless the gateway security is understood.
Users have less external context for who maintains the skill or where to verify updates.
The registry information does not identify an upstream source or homepage. The bundled code is simple and present, but provenance is still limited.
Source: unknown Homepage: none
Review the included script and install it only if you trust the publisher or your organization has validated the gateway integration.