Guanrentang Writer

Key things to consider before installing/using this skill: - Metadata mismatch: the skill metadata declares no env vars or required binaries, but SKILL.md clearly needs ZHIPU_API_KEY and uses curl/jq — ask the author to update metadata. - API key handling: do NOT store the API key in a global shell RC if you want to limit exposure; prefer a skill-local .env file with restrictive file permissions (chmod 600). Treat the key as sensitive because article text/prompts will be sent to the external service. - External endpoint: the skill calls https://open.bigmodel.cn. Verify you trust that service and understand any data-processing/privacy terms (user content and prompts will be transmitted). - Local file access: the skill will create directories and copy assets from ~/.claude/skills/guanrentang-writer and will write articles/images to paths you specify — review those files and paths, and avoid pointing OUTPUT_DIR to sensitive locations. - Required tooling: ensure curl and jq (and a POSIX shell) exist where the agent runs; otherwise the runtime commands in SKILL.md will fail. - Least privilege: if you decide to use it, prefer putting the API key in a skill-local .env (not in ~/.zshrc), inspect any assets placed under the skill_dir, and test with non-sensitive content to observe what is sent to the API and what is stored locally. - Ask the publisher for: source code or homepage, explicit list of required env vars/binaries in metadata, and a sample run log showing the exact requests sent to the image API so you can verify no unexpected endpoints or extra data are transmitted.