玄空数术·六爻占卜
Analysis
The skill’s divination purpose is coherent, but it asks the agent to run shell commands with user-supplied text and to fetch/send remote images without clear validation, which deserves review before installation.
Findings (5)
Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.
Checks for instructions or behavior that redirect the agent, misuse tools, execute unexpected code, cascade across systems, exploit user trust, or continue outside the intended task.
python -X utf8 liuyao_service.py divine -n <数字1,数字2,数字3> -c <占卜类别> -m "<用户问题>"
The workflow inserts free-form user text into a bash command argument, and similar instructions are used for chat questions and API-key saving, without explicit escaping or safe argument-array guidance.
curl -o /tmp/liuyao_images/guaxiang_$(date +%Y%m%d%H%M%S).png "<image_url>"
The image URL comes from the external API response and is downloaded automatically before being sent with openclaw, but the artifact does not specify scheme, host, content-type, or size checks.
No install spec — this is an instruction-only skill.
The skill still relies on commands and dependencies such as Python, httpx, curl, and openclaw, but the install/provenance contract does not declare how those are provided.
Checks whether tool use, credentials, dependencies, identity, account access, or inter-agent boundaries are broader than the stated purpose.
保存到 `~/.liuyao_key` 文件: ```bash echo "lyk-xxxxx..." > ~/.liuyao_key ```
The skill persistently stores a user-provided API key in the home directory for later service calls.
Checks for exposed credentials, poisoned memory or context, unclear communication boundaries, or sensitive data that could leave the user's control.
BASE_URL = "https://yao.gizzap.com"
The Python client sends divination/chat requests and the API key header to this external service endpoint.