Skill flagged — suspicious patterns detected
ClawHub Security flagged this skill as suspicious. Review the scan results before using.
travel-planner-plus
v1.0.1为用户生成个性化旅游攻略。当用户要求"做一份旅游攻略"、"帮我规划X天X晚的旅行"、"生成某地旅游行程"、"制定旅游计划"时使用此技能。支持国内外各大城市,自动搜索景点/酒店/美食,计算交通路线,生成Word文档并发送给用户。
⭐ 0· 41·0 current·0 all-time
by@ggyybb
MIT-0
Download zip
LicenseMIT-0 · Free to use, modify, and redistribute. No attribution required.
Security Scan
OpenClaw
Suspicious
medium confidencePurpose & Capability
The skill claims to generate travel guides and use Baidu Maps for geocoding/routes and to send a Word doc via Feishu — that matches the included code and SKILL.md. However, the package metadata declares no required credentials or tools while SKILL.md and the script clearly require a Baidu API key (AK), python-docx, and a messaging tool (Feishu). Absence of declared env/config requirements is an incoherence.
Instruction Scope
SKILL.md instructs the agent to check MEMORY.md or TOOLS.md for a Baidu AK and to perform multi-engine web searches and then send the generated doc via the platform 'message' tool (Feishu). Asking the agent to search its MEMORY/TOOLS for credentials is broader than necessary and could expose other stored secrets; the instructions do not restrict or explicitly declare which memory entries to access. The network activity is limited to documented APIs (Baidu and web search), which fits the purpose, but the memory-check step is scope creep.
Install Mechanism
This is instruction-only (no install spec), but the repository includes a Python script that depends on python-docx. The skill does not provide install steps or declare the python package dependency, so the runtime environment may be missing required libraries. No third-party download URLs are used, which reduces supply-chain risk, but the missing install info is an operational inconsistency.
Credentials
The skill requires a Baidu Maps AK for geocoding/routing in both SKILL.md and the script, but the manifest lists no required env vars or primary credential. It also expects a messaging tool (Feishu) to send files but does not declare any Feishu credentials. The script prints a prefix of the AK to stdout (AK: {ak[:10]}...), which could leak part of the key to logs. Asking the agent to retrieve keys from MEMORY.md/TOOLS.md increases the chance of accidental exposure of other secrets.
Persistence & Privilege
The skill does not request always:true and does not modify other skills or system-wide settings. It writes outputs to the agent workspace (/root/.openclaw/workspace) which is expected for generated files. Autonomous invocation is enabled (platform default) but not combined with other high-risk flags.
What to consider before installing
This skill appears to be a legitimate travel guide generator, but there are several mismatches you should resolve before installing: 1) SKILL.md and the included Python script require a Baidu Maps API key (AK) and the python-docx package, yet the registry metadata declares no required env vars or install steps — ask the author to declare a BAIDU_AK (or equivalent) and provide installation instructions for python-docx. 2) The instructions tell the agent to check MEMORY.md/TOOLS.md for an AK — avoid automatic scanning of agent memory; prefer the user to explicitly provide the AK at runtime to prevent accidental exposure of other stored secrets. 3) The script prints a prefix of the AK to stdout which may leak part of the key in logs; request removal of that logging or masking of the key. 4) Confirm how the Feishu 'message' tool is authenticated and whether any Feishu credentials are required — these are not declared. 5) Because the source/homepage is unknown, run this in an isolated/test environment first and review the code (the included script) to ensure no additional network endpoints or behaviors are added. If you cannot get the author to clarify these points, treat the skill as risky and avoid granting it access to stored credentials or sensitive memory.Like a lobster shell, security has layers — review code before you run it.
latestvk977stacnyqk8c2hykv45fe9kd84v5gp
License
MIT-0
Free to use, modify, and redistribute. No attribution required.