AI Customer Service
PassAudited by VirusTotal on May 13, 2026.
Overview
Type: OpenClaw Skill Name: ai-cs Version: 1.0.1 The skill bundle 'ai-cs' consists of configuration and instructions (SKILL.md) for an AI customer service agent. It defines a structured workflow for answering product questions using a local knowledge base, handling human handoffs, and maintaining safety boundaries (e.g., refusing sensitive data). There is no executable code, and the instructions are consistent with the stated purpose of providing automated customer support without evidence of malicious intent or data exfiltration.
Findings (0)
Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.
Customer replies may repeat whatever is in the local support wiki, including outdated or incorrect policy information.
The skill intentionally relies on persistent local knowledge-base and log files to produce customer-facing answers. This is purpose-aligned, but those files can influence future responses if stale, inaccurate, or edited by an untrusted party.
Use the local llm-wiki as the source of truth... Read `SCHEMA.md`... Read `index.md`... Read the recent end of `log.md`... search all markdown files
Keep the support wiki curated, restrict write access, review log updates, and scope SUPPORT_WIKI_PATH/WIKI_PATH to the intended support knowledge base only.
Customer messages, identifiers, and attachments may be processed by the agent runtime and supporting adapter.
The skill is designed to operate behind a messaging-channel adapter and handle customer identifiers, messages, and attachments. This is expected for customer support, but the adapter boundary and customer data handling need appropriate validation and privacy controls.
customer WeChat → company WeCom/Enterprise WeChat → channel adapter → OpenClaw/Hermes runtime → this skill → local wiki... Capture `channel`, `external_user_id`, `external_message_id`, `conversation_id`, text, attachments, locale
Use a trusted channel adapter, validate message origin and idempotency, minimize stored customer data, and scan or restrict attachments before passing them to the agent.