Skillv2.0.1

ClawScan security

bing图片批量下载skill · ClawHub's context-aware review of the artifact, metadata, and declared behavior.

Scanner verdict

BenignApr 13, 2026, 2:58 AM

Verdict: benign
Confidence: high
Model: gpt-5-mini
Summary: The skill's code, instructions, and required actions are internally consistent with its stated purpose (keyword-based multi-source image download using the included script); no disproportionate or unexplained access was found.
Guidance: This skill appears to do what it claims: run the included script to scrape image URLs (Bing + demo), download images to downloads/<keyword>/, keep an index to avoid duplicates, and optionally send images via the OpenClaw CLI. Before installing or enabling automation: 1) Confirm you trust the repository and review the scripts (they perform HTTP GETs and write files). 2) Be aware scraping Bing may be fragile and could violate terms of service depending on your usage—use responsibly. 3) If you plan to use the 'openclaw message send' / cron workflow, ensure the host agent has correct OpenClaw/Feishu credentials and you consent to automatic uploading of images. 4) Check for copyrighted content and legal constraints for storing/transmitting images. 5) Run the bundled tests or a small manual run (demo source) in a controlled environment before scheduling automated runs.

Review Dimensions

Purpose & Capability: okName/description (batch download from Bing / multiple sources) matches the code and SKILL.md: the repo contains a CLI script, a Bing source and a Demo source, storage/indexing, and reporting. No unrelated credentials or binaries are requested.
Instruction Scope: noteRuntime instructions are narrowly focused on running the included script (using uv or python3), collecting/download reporting, and optionally sending images via the OpenClaw CLI to Feishu from cron. This is consistent with the skill purpose, but the SKILL.md also documents an automated send-to-Feishu workflow (openclaw message send) which will transmit downloaded images externally — users should be aware of that external transmission step and ensure proper authorization/configuration before enabling automation.
Install Mechanism: okNo install spec; this is an instruction + code bundle only. No remote downloads or unexpected installer URLs were used. All code is present in the repo (sources, storage, scripts, tests).
Credentials: noteThe skill declares no required env vars or credentials, and the runtime behavior (HTTP requests to Bing/demo sources, writing to downloads/, and optionally invoking openclaw CLI) aligns with that. One minor mismatch to be aware of: the SKILL.md shows sending files to Feishu via the openclaw CLI, which typically requires the agent to have configured credentials or tokens — those are not declared by the skill (but may be provided by the host agent).
Persistence & Privilege: okalways:false and no special privileges requested. The skill writes its own output under downloads/<keyword>/ and maintains an index/metadata there; it does not request to modify other skills or global agent configuration. Cron/automation guidance is advisory, not automatic.