Skill flagged — suspicious patterns detected
ClawHub Security flagged this skill as suspicious. Review the scan results before using.
med-record-struct
v1.0.0将中文门诊复诊病历文本结构化为细粒度字段,输出 JSON(如现病史/既往史/诊断/处理意见等)。
⭐ 0· 157·1 current·1 all-time
by@aaiccee
MIT-0
Download zip
LicenseMIT-0 · Free to use, modify, and redistribute. No attribution required.
Security Scan
OpenClaw
Suspicious
high confidencePurpose & Capability
The skill's stated goal (structure Chinese outpatient follow-up records) aligns with the included Python script which POSTs the record to a remote structuring API and returns JSON. Calling a remote service for extraction is a reasonable implementation choice for this purpose.
Instruction Scope
SKILL.md repeatedly promises '严格脱敏' (strict de-identification) and '不做本地持久化' (no local persistence). The runtime script, however, reads the full record from disk and sends the raw record_text to the remote API without any de-identification step, and it writes the structured output to a JSON file on disk. The documentation therefore misstates what the code does — this is a substantive scope/behavior mismatch.
Install Mechanism
No install spec; skill is instruction + a small Python script that uses only the standard library (urllib, json). This is low-risk from an install/execution perspective.
Credentials
The skill requests no credentials and no env vars, yet it transmits potentially sensitive medical text to a third-party endpoint (https://shangbao.yunzhisheng.cn/...). There is no code-driven de-identification, no authentication, and no explicit privacy/retention guarantees from that endpoint in the repository. Asking for no credentials is not in itself bad, but the claim that the skill will de-identify data prior to sending is not implemented.
Persistence & Privilege
The skill does not request elevated privileges or 'always' inclusion. However, it does persist the structured output to disk (configurable output path), which contradicts the SKILL.md assertion of 'no local persistence'. Writing the structured JSON is normal for tooling but is inconsistent with the declared privacy stance.
What to consider before installing
This skill will send the full text of the medical record you provide to a remote service (https://shangbao.yunzhisheng.cn/...). Although the SKILL.md promises de-identification and no local persistence, the included script does not perform de-identification and it writes structured results to disk. Before installing or using it: (1) do not feed real identifiable patient data unless you trust and have reviewed the remote service and its privacy/legal terms; (2) if you must use it, pre-sanitize/de-identify records yourself (remove names, IDs, phone numbers, addresses, images) before running; (3) consider modifying the script to perform de-identification locally and/or to avoid writing sensitive outputs to disk; (4) validate the remote endpoint (ownership, TLS, retention policy) and consider running an on-prem/local model instead if PHI cannot be shared; (5) after testing, securely delete any output files containing patient-derived data. The mismatch between the documentation and implementation is the primary risk here.Like a lobster shell, security has layers — review code before you run it.
latestvk97eqdx5ra5vppbpf7wj0yd7mn837r4a
License
MIT-0
Free to use, modify, and redistribute. No attribution required.
Runtime requirements
🧩 Clawdis