Skill flagged — suspicious patterns detected
ClawHub Security flagged this skill as suspicious. Review the scan results before using.
Chat Logger
v1.0.0对话记录 - 自动记录飞书/钉钉消息(严格触发规则版) ⚠️ 严格触发规则: - 消息 "chatlog汇总" → 只能执行此 Skill,禁止主 Agent 处理 - 消息 "今日简报" → 只能执行此 Skill,禁止主 Agent 处理 - 消息 "我的记录" → 只能执行此 Skill,禁止主 Agent...
⭐ 0· 73·1 current·1 all-time
by@bjmfjoy
MIT-0
Download zip
LicenseMIT-0 · Free to use, modify, and redistribute. No attribution required.
Security Scan
OpenClaw
Suspicious
high confidencePurpose & Capability
Name/description (chat logger for Feishu/Dingtalk) align with the code: it writes per-user Markdown logs under ~/.openclaw/workspace/memory/chat-logs and produces summaries. No network calls or external credentials are requested, which is proportional to the stated purpose.
Instruction Scope
SKILL.md mandates strict exact-match triggers and prescribes an agents workflow. The implementation diverges: handle_chat_query uses substring/loose matching (e.g., 'in' checks and .lower().contains('chatlog')), which can cause queries to trigger unexpectedly. More importantly, the on_incoming_message_hook calls _chat_logger.record_message(...) but ChatLoggerSkill defines write_message(...) and there is only a top-level record_message function — the hook calls a non-existent instance method and will raise an error (caught, but the hook behavior is broken). These mismatches mean the documented runtime behavior (hook + explicit recording + strict triggers) is unreliable.
Install Mechanism
Instruction-only with bundled Python code, no install spec or downloaded artifacts. No third-party installs or remote URLs; lowest install risk.
Credentials
No environment variables, credentials, or external config paths are requested. The skill only writes/reads local files under the user's home directory — appropriate for a local logger.
Persistence & Privilege
Skill writes persistent logs into ~/.openclaw/workspace/memory/chat-logs and exposes hook entrypoints (on_incoming_message_hook). always:false, but the skill can be invoked autonomously by default. This persistence is expected for a logger, but users should be aware logs are stored locally and could contain sensitive content.
What to consider before installing
This skill appears to be a local chat logger and does not contact external services, which is appropriate. However: (1) the code and the SKILL.md disagree — the hook function calls a non-existent instance method (_chat_logger.record_message) and will fail; (2) the README demands strict exact-match triggers but the implementation uses loose substring matching, so triggers may fire unexpectedly; (3) the skill writes persistent logs to ~/.openclaw/workspace/memory/chat-logs, which may contain sensitive messages. Before installing: test the skill in a sandbox; fix or request the author to correct the hook to call the existing API (or rename methods consistently) and to enforce exact-match trigger behavior if you require it; decide whether storing plaintext chat logs on the host is acceptable and consider rotating/deleting logs or restricting file permissions. If you do not trust automatic invocation, avoid enabling autonomous hooks or run the skill with restricted privileges.Like a lobster shell, security has layers — review code before you run it.
latestvk970hsy5t1dw77cmgv4w1wg0n983hvgv
License
MIT-0
Free to use, modify, and redistribute. No attribution required.