Skillv1.0.0

ClawScan security

抖音民间诡异故事视频生成器 · ClawHub's context-aware review of the artifact, metadata, and declared behavior.

Scanner verdict

ReviewMar 15, 2026, 7:13 AM

Verdict: Review
Confidence: medium
Model: gpt-5-mini
Summary: The skill mostly does what it claims (generate TTS, images, videos and upload), but its metadata omits required secrets/credentials and it instructs use of external FTP and a browser profile — those discrepancies and the need to supply credentials are concerning and should be clarified before use.
Guidance: Before installing or running this skill, verify the following: (1) Ask the publisher to update the registry metadata to explicitly list required environment variables (DASHSCOPE_API_KEY, FTP_HOST/USER/PASS/BASE_URL, any Douyin account info) so you know what secrets you'll need to provide. (2) Confirm that dashscope.aliyuncs.com is the intended, trusted API provider and that you trust that provider with your text and media. (3) Carefully control the FTP server: images are uploaded to the configured FTP and will be publicly reachable via FTP_BASE_URL — use a server you control or a temporary/test server. (4) Be cautious with the browser profile approach: uploading via a local profile may use an already logged-in Douyin account; avoid using your primary account or supply an isolated browser profile. (5) Run first in an isolated environment (VM/container) and with test accounts/keys. (6) If you require higher assurance, request that the author supply minimal reproduction steps and explicit listing of required secrets, or review and possibly modify the scripts to avoid exposing media to third-party servers. The SKILL.md states 'user confirmation before publish' — ensure the agent truly waits for interactive confirmation and does not autonomously publish.

Review Dimensions

Purpose & Capability: concernThe description matches the included scripts (voice, image, video, subtitle generation and assembling). However the registry metadata declares no required environment variables or credentials, while the code clearly requires DASHSCOPE_API_KEY and FTP credentials (FTP_HOST, FTP_USER, FTP_PASS, FTP_BASE_URL). The SKILL.md also references Douyin account and browser profile configuration. The missing declared env vars/config in metadata is an incoherence.
Instruction Scope: concernRuntime instructions are explicit and scoped to the stated task, but they require writing files to a local temp uploads directory and using a browser profile named 'openclaw' to upload to Douyin. The SKILL.md tells the agent to upload images to an external FTP (for the video-generation API to consume). Those actions expose local files and rely on local browser profiles/accounts; the instructions do not ask for or validate that these external endpoints/profiles are trusted.
Install Mechanism: noteThere is no install spec (instruction-only), which reduces installer risk. However the skill bundles executable Python scripts which will be executed at runtime and make network calls to dashscope.aliyuncs.com and arbitrary FTP hosts — so there is runtime network exposure even without an install step.
Credentials: concernThe code requires sensitive environment variables (DASHSCOPE_API_KEY and FTP credentials) and references Douyin account/profile values in the config doc, yet the skill metadata lists none. Requiring an API key and FTP credentials is plausible for this functionality, but the omission from metadata and the number of credentials required (including potentially a logged-in browser profile) is disproportionate to what the registry advertises and should be declared.
Persistence & Privilege: okalways is false and the skill does not request persistent installation or modify other skills. It uses a browser tool/profile for uploading; autonomous invocation is allowed by default, which increases blast radius if combined with other issues, but that alone is not a new mismatch.