ClawHub
Skill flagged — suspicious patterns detected

ClawHub Security flagged this skill as suspicious. Review the scan results before using.

WeChat Send

v1.0.0

Automate sending text messages in the macOS WeChat desktop app by controlling the UI via AppleScript and JXA. This is NOT a WeChat chat channel for OpenClaw...

0· 819·5 current·5 all-time
by@clk1st
MIT-0
Download zip
LicenseMIT-0 · Free to use, modify, and redistribute. No attribution required.
Security Scan
VirusTotalVirusTotal
Suspicious
View report →
OpenClawOpenClaw
Benign
medium confidence
Purpose & Capability
The script and SKILL.md align with the stated purpose of sending text via the WeChat macOS GUI using AppleScript/JXA. One inconsistency: the README/requirements repeatedly ask for macOS Accessibility permission granted to 'node', but the script runs osascript/osascript -l JavaScript (JXA) and bash — it does not invoke node. Requiring 'node' is likely an editing error and should be corrected to the actual runtime (Terminal, iTerm, the gateway process, or the node process only if you run it under node).
Instruction Scope
Instructions are scoped to activating WeChat, searching a contact, clicking the input field, setting the clipboard, and sending the message. Important side-effect: the script overwrites the system clipboard with the message (it does not restore the previous clipboard), which is a privacy/UX issue and should be documented or mitigated. The script only accesses args and UI; it does not read other files or network resources.
Install Mechanism
No install actions or remote downloads are performed (instruction-only plus a bundled shell script). Nothing is written to disk beyond the existing script file, so install risk is low.
Credentials
The skill requests no credentials or environment variables. The Accessibility permission it requires is proportional to the task (simulating keystrokes/mouse events).
Persistence & Privilege
The skill is not marked always:true and does not request persistent system-wide configuration. It requires Accessibility permission to simulate UI events, which is necessary for its function but should be granted only to the specific host process that will run the script.
Assessment
This skill is coherent with its stated purpose of GUI-automating WeChat on macOS, but check these before installing: (1) Correct the Accessibility guidance — grant permission to the app/process that will run the script (Terminal, your agent gateway, or node only if you actually run it via node), not 'node' by default. (2) The script overwrites your clipboard with the message and does not restore it; modify the script to save/restore the previous clipboard if that matters to you. (3) GUI automation can send input to the wrong contact if search results are ambiguous — test with a non-sensitive dummy contact first. (4) Only grant Accessibility to trusted processes and consider running the script in a controlled environment. If you want higher assurance, ask the author to (a) fix the node/accessibility documentation mismatch, (b) add logic to save and restore the clipboard, and (c) optionally confirm which host/process is expected to run the commands.

Like a lobster shell, security has layers — review code before you run it.

automationvk97dw2y73t2mn0k280v6vb9yp582aq8rlatestvk97dw2y73t2mn0k280v6vb9yp582aq8rmacosvk97dw2y73t2mn0k280v6vb9yp582aq8rmessagingvk97dw2y73t2mn0k280v6vb9yp582aq8rwechatvk97dw2y73t2mn0k280v6vb9yp582aq8r

License

MIT-0
Free to use, modify, and redistribute. No attribution required.
Termshttps://spdx.org/licenses/MIT-0.html

Runtime requirements

OSmacOS

Comments