Skill flagged — suspicious patterns detected
ClawHub Security flagged this skill as suspicious. Review the scan results before using.
GitHub 通知自动分拣
v1.0.1GitHub notification auto-triage via email channel. Classifies incoming GitHub notification emails into three tiers: (1) CI failures and security alerts → imm...
⭐ 0· 85·0 current·0 all-time
MIT-0
Download zip
LicenseMIT-0 · Free to use, modify, and redistribute. No attribution required.
Security Scan
OpenClaw
Suspicious
medium confidencePurpose & Capability
The name/description match the runtime instructions: the skill triages GitHub notification emails, forwards urgent items, buffers others, and archives the rest. Requested capabilities (creating a sub-mailbox, sending/marking mail) are consistent with that purpose. However, the skill metadata claims 'no required binaries/env vars' while SKILL.md explicitly requires mail-cli (npm @clawemail/mail-cli) and the setup script uses jq; this mismatch is unexpected and worth attention.
Instruction Scope
Instructions stay within the stated purpose: they read incoming GitHub emails, match patterns in references/triage-rules.md, forward or archive via mail-cli, and write a local buffer file for daily summaries. They do not demand unrelated files or external endpoints beyond the mail system and the user's main email.
Install Mechanism
There is no install spec (instruction-only plus a small setup script), so nothing arbitrary is downloaded or installed by the skill bundle itself. The setup step relies on external tooling (mail-cli and jq) that must already be present — no third-party install URLs are embedded in the skill.
Credentials
The SKILL.md and setup script require mail-cli configured with an API key and use mail-cli to resolve the master user email, but the skill metadata lists no required environment variables or primary credential. That omission is disproportionate: the skill needs access to mail-cli credentials (and will display auth codes when creating sub-mailboxes), yet the manifest does not declare or request them. The setup script also uses jq but this is not declared.
Persistence & Privilege
The skill does not request always:true and does not modify other skills or system-wide settings. It instructs adding a cron schedule inside OpenClaw for daily summary runs (normal for an email automation). Autonomous invocation is allowed (default) which is expected for a triage automation.
What to consider before installing
This skill appears to implement email triage, but the package metadata understates its runtime requirements. Before installing, verify you are willing to give the agent access to your mail-cli account and associated API key (the skill will call 'mail-cli clawemail master-user' and create a sub-mailbox). Confirm mail-cli and jq are installed on the host and that you trust the @clawemail/mail-cli package source. Be aware the setup will create/print an auth code for the new sub-mailbox — store it securely. Review where buffer files (memory/gh-triage-buffer-YYYY-MM-DD.json) will be stored and who can read them. If you need stronger guarantees, ask the author to update the skill manifest to explicitly list required binaries and environment variables and to document exactly how credentials are stored/used.Like a lobster shell, security has layers — review code before you run it.
latestvk971qpp2kmms7t910fga4gcaqh84na0w
License
MIT-0
Free to use, modify, and redistribute. No attribution required.