ClawHub

百度网盘官方 skill

v1.4.3

百度网盘(Baidu Drive)文件管理 — 上传、下载、转存、分享、搜索、移动、复制、重命名、创建文件夹。 TRIGGER: 用户提及"百度网盘/bdpan/网盘/云盘/baidu drive/Baidu Drive"并涉及文件操作。 DO NOT TRIGGER: 非文件存储操作,或使用其他云盘服务时。

1· 64·0 current·0 all-time
by@baidunetdiskaibot·duplicate of @may-yaha/baidu-netdisk-storage
MIT-0
Download zip
LicenseMIT-0 · Free to use, modify, and redistribute. No attribution required.
Security Scan
Capability signals
Requires OAuth tokenRequires sensitive credentials
These labels describe what authority the skill may exercise. They are separate from suspicious or malicious moderation verdicts.
VirusTotalVirusTotal
Benign
View report →
OpenClawOpenClaw
Benign
medium confidence
Purpose & Capability
Name/description (Baidu Drive file management) matches the included scripts, docs, and CLI commands. The presence of install/login/update/uninstall scripts is appropriate for a CLI-based cloud-storage skill. No unrelated credentials or unrelated binaries are requested.
Instruction Scope
SKILL.md instructs the agent to run bdpan CLI commands and the provided scripts (install.sh, login.sh, update.sh) and constrains actions to /apps/bdpan/. It also enforces interactive login via scripts and forbids reading config.json. This scope is appropriate, but the skill explicitly instructs the agent to download and execute an installer (via install.sh) and to run background downloads (nohup -> /tmp logs) which will write to the host filesystem and may create long-running processes; those are expected for this feature set but are surface for risk if the installer or update sources are untrusted. Also there is a documentation inconsistency about checksum behavior (see install_mechanism).
Install Mechanism
Install/update use network downloads: install.sh fetches an installer from issuecdn.baidupcs.com (a Baidu CDN) and performs SHA256 verification in the script; update.sh fetches version info from pan.baidu.com and downloads a zip update (with checksum verification). Using official Baidu endpoints is expected for this skill, but any install-by-download carries execution risk — the scripts execute downloaded binaries and extract archives. Also SKILL.md contains a contradictory statement claiming the installer does not perform SHA256 checks, while scripts include checksum checks; this inconsistency should be resolved.
Credentials
The skill declares no required environment variables or primary credential and the run-time behavior relies on interactive OOB login via login.sh. Scripts do respect optional env vars (BDPAN_BIN, BDPAN_INSTALL_DIR, BDPAN_CONFIG_DIR) for user configuration but SKILL.md forbids the agent from setting them automatically — this is coherent and proportional.
Persistence & Privilege
The skill is not always-enabled and allows only user-invoked/autonomous calls as normal. Update and install operations modify local files (e.g., ~/.local/bin, ~/.config/bdpan, /apps/bdpan) which is expected for a CLI integration; update.sh explicitly requires user confirmation and tries to detect Agent environments to avoid silent auto-updates. The skill does not request cross-skill configuration or system-wide privileged settings.
Assessment
This skill is coherent with its stated purpose but exercises normal-install risks you should consider before installing: it downloads and executes an installer from Baidu's CDN and writes binaries/config to your user directories (~/.local/bin, ~/.config/bdpan) and uses /tmp for background download logs. Actions to consider before proceeding: - If you trust Baidu and expect to use a bdpan CLI, the behavior is reasonable; otherwise run install.sh manually in a sandboxed environment first. - The install/update scripts perform network downloads and (in the code) SHA256 checks — verify the checksums/URLs yourself if you need high assurance. Note: SKILL.md contains a contradictory statement saying install.sh does not check SHA256; the script actually contains checksums. Ask the maintainer to clarify. - Login is interactive (OOB) and the scripts try to avoid exposing the authorization code on the command line; follow the prompts and do not paste tokens into other channels. The skill forbids reading ~/.config/bdpan/config.json, but installing/uninstalling will create/remove that path — back up any important data before uninstalling. - Background downloads use nohup and write logs to /tmp; expect long-running processes and temporary files. - If you have sensitive data or are in a high-security environment, prefer manual inspection and sandboxed installation before granting this skill the ability to run install/update/login scripts.

Like a lobster shell, security has layers — review code before you run it.

latestvk971qtm4349jw0kqrexkfp2tp184yyh4

License

MIT-0
Free to use, modify, and redistribute. No attribution required.
Termshttps://spdx.org/licenses/MIT-0.html

Comments