Skill flagged — suspicious patterns detected
ClawHub Security flagged this skill as suspicious. Review the scan results before using.
Local Life Hotspot
v6.0.0搜索当天真实热门话题,选择一个深度创作,生成简约图片,自动发布。
⭐ 0· 97·0 current·0 all-time
MIT-0
Download zip
LicenseMIT-0 · Free to use, modify, and redistribute. No attribution required.
Security Scan
OpenClaw
Suspicious
high confidencePurpose & Capability
The skill's description is content creation + publish to Xiaohongshu. The code implements that, but the package/registry metadata and SKILL manifest declare no required binaries or env vars while the code calls an external 'mcporter' CLI to publish and imports Pillow for image generation. The skill also references Xiaohongshu MCP in README/package.json but does not declare or request the credentials or the mcporter binary that are necessary for publishing—this is an incoherence between claimed purpose and declared requirements.
Instruction Scope
SKILL.md and run.py instruct the agent to: query external search endpoints (s.jina.ai and r.jina.ai), read remote webpages, generate images, write drafts to /home/admin/openclaw/workspace/temp/ and /tmp, and call an external publisher via subprocess. These steps align with the feature set, but the code disables TLS verification for outgoing requests (insecure ssl_context) and uses subprocess.run(shell=True) to invoke 'mcporter' with user content embedded—both expand risk and deserve review. The skill does not read unrelated local secrets, but the publish step implicitly relies on external credentials/config that are not declared.
Install Mechanism
There is no install spec (instruction-only), yet package.json lists dependencies (Pillow) and README mentions Python 3.8+ and Xiaohongshu MCP. Because nothing is installed automatically, the runtime will fail or behave unexpectedly unless the environment already has Pillow and 'mcporter' configured. The absence of an install spec combined with runtime shell calls to an external CLI is inconsistent and risky if the environment lacks those components.
Credentials
The skill declares no required environment variables or credentials, but publishing to Xiaohongshu via the 'mcporter' CLI will require credentials or local config for the MCP. That means the skill will attempt to use credentials/config that live outside the skill and are not declared to the user. Additionally, the code writes files under a fixed /home/admin path and /tmp, which may be surprising. The number and type of implicit credentials/config accesses are disproportionate to the manifest's 'none' declaration.
Persistence & Privilege
always is false and the skill is user-invocable only; it does write drafts and image files to disk but does not modify other skills or agent-wide settings. It does not request permanent 'always' presence. File writes are limited to skill-related draft/image paths.
What to consider before installing
This skill appears to implement search→compose→image→publish, but check these before installing: 1) The code expects an external 'mcporter' CLI and Xiaohongshu MCP credentials even though none are declared—ensure you have and trust mcporter and that credential handling is acceptable. 2) Pillow (PIL) is required but not installed automatically—install it in a controlled environment. 3) The script disables TLS verification for network fetches (insecure) — consider removing that or validating endpoints. 4) The publish uses subprocess.run(shell=True) with user-generated content—review/escape inputs or avoid shell=True to reduce injection risk. 5) The skill writes files under /home/admin and /tmp—if you run it on a multi-user or production system run it in an isolated sandbox. If you plan to use auto-publish, verify how mcporter obtains credentials and test in a safe environment first.Like a lobster shell, security has layers — review code before you run it.
latestvk97ffg8qmarz6gr7hr9bgz2scn83tsqh
License
MIT-0
Free to use, modify, and redistribute. No attribution required.