财税公众号小助手
v1.0.0财税审计内容生成器 - 快速生成专业财税公众号文章,支持多种文章类型和主题
⭐ 0· 309·0 current·0 all-time
MIT-0
Security Scan
OpenClaw
Suspicious
medium confidencePurpose & Capability
Name/description match the included code: content generator and image generator for finance articles. Generating images via an image-API is plausible for the stated purpose. However, the image generator contains a hard-coded API key and performs direct network calls and file writes even though the skill declares no credentials or environment variables — that mismatch is unexpected and should be explained/justified.
Instruction Scope
SKILL.md instructs the agent to run local node scripts and save articles/images to disk (articles/, ../articles/images). The included files implement network calls (Unsplash API) and create files. The instructions and code request and process user-uploaded data (Excel) in valuation guides. The scope does not ask to read unrelated system config, but it does perform network requests and persistent file writes which are beyond simple 'text generation' and should be noted.
Install Mechanism
No install spec is provided (instruction + code included). No remote download/install URLs were used in the package itself. This is lower risk than arbitrary remote installations, but included executable scripts will run locally when invoked.
Credentials
The skill declares no required environment variables or credentials, but finance-image-generator.cjs contains a hard-coded API key (API_KEY = 'qekoFPuHK6YT6369...') used to call api.unsplash.com. That is a mismatch: either credentials should be declared and sourced from env vars, or the embedded key is a leaked/shared secret. This is a proportionality/credential-management concern and a potential privacy/billing risk.
Persistence & Privilege
always is false and the skill does not request elevated platform privileges. However, the code writes files under an articles/images directory, which creates persistent data on disk. Autonomous invocation is allowed by default (disable-model-invocation: false) — combined with the credential embed and network access this increases blast radius, but the skill does not modify other skills or system-wide settings.
What to consider before installing
What to consider before installing:
- The image script contains a hard-coded API key for Unsplash-like API. That key is not declared as an environment variable — it may be a leaked/embedded credential. Do not assume it belongs to you; using the skill could bill or expose someone else's key. Ask the author to remove embedded keys and require an API key via an environment variable (e.g., UNSPLASH_KEY).
- The skill will make outbound network requests (search/download images) and save files to an articles/images folder. If you install/run it, run it in a sandbox or a controlled directory and review where files are written.
- If you plan to use the image feature, replace the embedded key with your own key stored in a secure env var and confirm API usage/attribution and billing rules (Unsplash rate limits/license).
- The command definitions reference absolute Windows paths (E:\Claude Code\...) — verify those are adjusted for your environment before running to avoid executing unexpected binaries.
- If you don't need image downloads, consider disabling or removing finance-image-generator.cjs before installation.
- If you want to proceed, request the author to: (1) remove embedded secrets, (2) declare required env vars in skill metadata, and (3) document network endpoints and storage paths. If the author cannot or will not, treat the skill as higher risk and prefer not to install or run it untrusted.Like a lobster shell, security has layers — review code before you run it.
latest
License
MIT-0
Free to use, modify, and redistribute. No attribution required.
SKILL.md
财税审计内容生成器
触发方式
当用户说类似以下内容时触发:
- "帮我写一篇财税文章"
- "生成一篇关于XX的审计文章"
- "我要写公众号内容"
- "写一篇政策解读"
- "/fin" 开头的命令
功能概览
| 功能 | 命令 | 说明 |
|---|---|---|
| 交互模式 | /fin | 进入交互式内容生成对话 |
| 生成文章 | /fin-article {topic} | 生成财税审计文章(公众号格式) |
| 完整文章 | /fin-full {topic} | 生成完整版文章 |
| 案例分析 | /fin-case {topic} | 生成案例分析类文章 |
| 政策解读 | /fin-policy {topic} | 生成政策解读类文章 |
| 风险提示 | /fin-risk {topic} | 生成风险提示类文章 |
| 经验分享 | /fin-share {topic} | 生成经验分享类文章 |
| 实务指南 | /fin-guide {topic} | 生成实务指南类文章 |
| 技术教程 | /fin-tutorial {topic} | 生成技术教程类文章 |
| 行业洞察 | /fin-insight {topic} | 生成行业洞察类文章 |
| 查看主题 | /fin-topics | 查看所有热门文章主题 |
| 按领域查看 | /fin-audit /fin-finance /fin-tax 等 | 查看特定领域热门主题 |
| 生成大纲 | /fin-outline {topic} | 生成文章大纲 |
| 生成标题 | /fin-titles {topic} | 生成文章标题选项 |
| 生成配图 | /fin-images {article_path} | 为财税文章生成配图 |
支持的文章类型
| 类型 | 适用场景 | 示例主题 |
|---|---|---|
| 案例分析 | 真实案例解读 | "上市公司财务造假案例" |
| 政策解读 | 新政影响分析 | "新《公司法》解读" |
| 风险提示 | 合规风险警示 | "金税四期风险点" |
| 经验分享 | 实务经验总结 | "审计新人避坑指南" |
| 实务指南 | 操作指南 | "小公司内控制度" |
| 技术教程 | 专业技能教学 | "Excel财务建模" |
| 行业洞察 | 趋势分析 | "2024财税行业趋势" |
支持的专业领域
| 领域 | 命令 | 热门主题示例 |
|---|---|---|
| 审计 | /fin-audit | 财务造假、内控审计、尽职调查 |
| 财务 | /fin-finance | 报表分析、成本控制、预算管理 |
| 税务 | /fin-tax | 个税汇算、税务筹划、发票管理 |
| 政策 | /fin-policy-topics | 公司法、税法、会计准则 |
| 技术 | /fin-tech | Excel、Python、财务系统 |
编辑部评审工作流
完整的多角色评审流程:
| 角色 | 命令 | 评审视角 |
|---|---|---|
| 完整流程 | /fin-review {topic} | 全流程评审 |
| 架构师 | /fin-review-architect | 流量+转化 |
| 主笔管 | /fin-review-writer | 结构+深度 |
| 毒舌编辑 | /fin-review-acid | 找错+质量 |
| 改稿人 | /fin-review-ghost | 表达+可读性 |
| 包装人 | /fin-review-pack | 爆款+变现 |
配图生成
| 命令 | 说明 |
|---|---|
/fin-images {path} | 财税文章配图 |
/fin-images-tax {path} | 税务文章配图 |
/fin-images-audit {path} | 审计文章配图 |
/fin-images-finance {path} | 财务文章配图 |
/fin-images-policy {path} | 政策解读配图 |
/fin-images-risk {path} | 风险提示配图 |
使用流程
方式一:直接生成文章
用户: /fin-article 小公司财务混乱
方式二:先查看热门主题
用户: /fin-topics
→ 获取热门主题列表
用户: /fin-article 新《公司法》实施影响
方式三:完整创作流程
1. /fin-outline {主题} # 生成大纲
2. /fin-titles {主题} # 生成标题选项
3. /fin-article {主题} # 生成文章
4. /fin-images {文章路径} # 生成配图
文章格式特点
- 公众号格式:适配微信公众号编辑器
- 专业准确:基于财税专业知识库
- 实用导向:注重实务操作和落地建议
- 风格多样:支持严肃干货和趣味科普
文件结构
finance-content-generator/
├── SKILL.md # 本文件
├── finance-content-skill.json # 命令配置
├── finance-content-generator.js # 内容生成脚本
├── finance-image-generator.cjs # 配图生成脚本
└── editorial-workflow.js # 编辑部评审脚本
Files
11 totalSelect a file
Select a file to preview.
Comments
Loading comments…