ClawHub
Skill flagged — suspicious patterns detected

ClawHub Security flagged this skill as suspicious. Review the scan results before using.

微信公众号文章发布工具

v1.0.1

AI-ready skill to format and publish Markdown articles to WeChat Official Accounts using Wenyan CLI.

0· 51·0 current·0 all-time
byLei@caol64
MIT-0
Download zip
LicenseMIT-0 · Free to use, modify, and redistribute. No attribution required.
Security Scan
VirusTotalVirusTotal
Benign
View report →
OpenClawOpenClaw
Suspicious
medium confidence
!
Purpose & Capability
The skill's stated purpose (publishing Markdown to WeChat via Wenyan CLI) is coherent, but the registry metadata does not declare the credentials (WECHAT_APP_ID / WECHAT_APP_SECRET) or the wenyan-cli dependency that the SKILL.md says are mandatory. Either the metadata is incomplete or the instructions are inconsistent with the declared requirements.
!
Instruction Scope
Runtime instructions tell the agent to read a Markdown file, parse and upload local or remote images to the WeChat material library, and use environment credentials to call WeChat APIs. These actions are appropriate for publishing, but the SKILL.md references environment variables and local file reads that are not reflected in the skill manifest — a scope/visibility gap that could hide unexpected behavior.
Install Mechanism
This is an instruction-only skill (no install spec), yet the document instructs installing wenyan-cli via pnpm (global install). That increases friction and risk because the skill assumes an external CLI will be installed at runtime; the skill should declare an install spec and pin a known package/version or document provenance for the CLI.
!
Credentials
WECHAT_APP_ID and WECHAT_APP_SECRET are sensible and required for using WeChat APIs, but they are sensitive credentials and the manifest does not declare them. The skill asks agents to upload images and post content to an external service — requesting these secrets without declaring them is disproportionate and should be fixed. Consider using test credentials and limiting scope/permissions.
Persistence & Privilege
The skill does not request always:true, does not declare persistent config paths, and does not claim to modify other skills or system-wide settings. Its runtime behavior appears limited to reading files and calling external APIs for publication.
What to consider before installing
Do not install or provide real WeChat credentials until the author clarifies the mismatch between the SKILL.md and the registry metadata. Ask the publisher to (1) update the manifest to list required env vars (WECHAT_APP_ID, WECHAT_APP_SECRET) and the wenyan-cli dependency with a pinned version and install spec, (2) provide a trustworthy homepage or source repo for wenyan-cli and the skill, and (3) document exactly what files/paths the skill will read or upload. If you must test, use a disposable/test WeChat account and rotate credentials afterwards, run the CLI installation in an isolated environment (container/VM), and inspect the wenyan-cli package source on npm/GitHub before granting access to production secrets.

Like a lobster shell, security has layers — review code before you run it.

latestvk977d28jkzer9gyxqb61wk4mbx84e4yb

License

MIT-0
Free to use, modify, and redistribute. No attribution required.
Termshttps://spdx.org/licenses/MIT-0.html

Comments