微信公众号文章阅读器
Analysis
This appears to be a simple WeChat article reader; the main things to notice are that it makes outbound web requests and asks for manually installed Python dependencies.
Findings (2)
Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.
Checks for instructions or behavior that redirect the agent, misuse tools, execute unexpected code, cascade across systems, exploit user trust, or continue outside the intended task.
with httpx.Client(follow_redirects=True, timeout=30) as client:
resp = client.get(url, headers=headers)The script makes an outbound request to whatever URL is passed and follows redirects. This is expected for a URL reader, but the code does not enforce the documented mp.weixin.qq.com scope.
如未安装,运行: ```bash pip install httpx beautifulsoup4 ```
The skill relies on manually installed, unpinned Python packages. This is purpose-aligned, but package versions and install source are left to the user's environment.