Back to skill
Skillv1.0.1
ClawScan security
morning-radar · ClawHub's context-aware review of the artifact, metadata, and declared behavior.
Scanner verdict
BenignMar 13, 2026, 9:24 AM
- Verdict
- Benign
- Confidence
- high
- Model
- gpt-5-mini
- Summary
- The code, runtime instructions, and requested credentials align with a newsletter-style tool that searches Baidu and pushes messages to Feishu; nothing in the files indicates unexplained or disproportionate access.
- Guidance
- This skill appears to do what it says: it searches Baidu and sends a Markdown summary to a Feishu recipient. Before installing, verify you trust the skill source because it will transmit search results and the generated message to your Feishu tenant. Provide only a Feishu app credential with the minimum required permissions and use an account/receiver Open ID you control. Note the package metadata inconsistency: some registry metadata showed no required env vars even though SKILL.md and skill.json require Baidu and Feishu credentials — confirm the env vars and config file location before running. If you want extra safety, run it in an isolated environment (container) and review the included index.js and lib/*.js files (they are small and readable).
Review Dimensions
- Purpose & Capability
- okName/description claim: collect news via Baidu AI search and push to Feishu. The code and SKILL.md require a Baidu API key and Feishu app credentials — these are exactly what the described functionality needs. Network hosts used (qianfan.baidubce.com and open.feishu.cn) match the declared purpose.
- Instruction Scope
- noteRuntime instructions and index.js only read environment variables and an optional local config.json, perform remote searches, format results, and call Feishu APIs. They do not attempt to read unrelated system files or arbitrary secrets. Minor note: SKILL.md asserts '不会收集或存储任何用户数据' — the skill doesn't persist data to remote third parties, but it does transmit search results and the generated message to Feishu (intended behavior).
- Install Mechanism
- okNo remote installers or downloads; code is included in the package and there is no install script that fetches external archives. This is low-risk from an install-mechanism perspective.
- Credentials
- noteRequired environment variables (BAIDU_API_KEY, FEISHU_APP_ID, FEISHU_APP_SECRET, FEISHU_RECEIVER_OPEN_ID) are necessary and proportional to the functionality. One minor inconsistency: the top-level registry summary in the evaluation metadata stated 'Required env vars: none', while skill.json and SKILL.md correctly list the required credentials — this is a metadata mismatch to be aware of.
- Persistence & Privilege
- okThe skill does not request always:true or elevated platform privileges. It only reads a local config file (optional) and uses network access to the two service hosts. It does not modify other skills or system-wide settings.