WeRead (微信读书)
ReviewAudited by ClawScan on May 10, 2026.
Overview
This skill matches its stated WeRead purpose, but it handles a WeRead session cookie and stores exported reading notes locally.
Before installing, make sure you are comfortable storing a WeRead browser cookie and personal reading notes under ~/.weread/. The reviewed behavior is consistent with a WeRead data/query skill, but protect that directory and avoid sharing exported note files unintentionally.
Findings (2)
Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.
Anyone or any process that can read the cookie file may be able to access the user's WeRead web session until the cookie expires or is revoked.
The skill depends on a WeRead session cookie and even documents browser-based cookie extraction. This is expected for the integration, but it is still credential/session access.
Cookie 存储路径: `~/.weread/cookie`(纯文本单行)。... 执行 JavaScript 提取 cookie:`document.cookie`
Use this only if you are comfortable giving the skill WeRead session access; prefer a dedicated browser profile, keep ~/.weread private, and delete or refresh the cookie when no longer needed.
Personal reading notes and history can remain on disk and may be reused in later workflows such as random reviews or reports.
The export script persists a local index of the user's reading notes and annotations for later reuse by the skill.
BASE_DIR = os.path.expanduser("~/.weread") ... INDEX_PATH = os.path.join(BASE_DIR, "notes_index.json") ... "notes": all_notes_flatRun exports intentionally, protect the ~/.weread directory on shared machines, and avoid piping note output into other tools unless you want those notes shared there.