Qq Mail
AdvisoryAudited by Static analysis on Apr 30, 2026.
Overview
No suspicious patterns detected.
Findings (0)
Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.
The agent may see and summarize who emailed the user, subject lines, timestamps, labels, unread status, and related links.
The skill is intended to read metadata from logged-in QQ Mail views. This is purpose-aligned, but it involves account-specific mailbox information.
邮件列表的主题/发件人/时间摘要(仅在登录与可视范围内)
Use it only with your own QQ Mail account, limit the folders or links you ask it to inspect, and avoid using it on highly sensitive messages.
A user might underestimate the privacy implications of sharing mailbox metadata with an agent.
The skill frames the data as non-sensitive, while the disclosed fields include email subjects, senders, times, labels, and source links, which many users may consider private.
面向公开分享页面与个人邮箱中可视的非敏感信息摘要
Treat email metadata as private even when the skill avoids message bodies and attachments.