Skillv1.1.1

ClawScan security

Feishu Chat · ClawHub's context-aware review of the artifact, metadata, and declared behavior.

BenignMar 5, 2026, 1:55 AM

Verdict: benign
Confidence: high
Model: gpt-5-mini
Summary: This is an instruction-only guide for sending Feishu (Lark) group messages; it is internally consistent with its stated purpose, does not request credentials or install code, but it instructs changing OpenClaw configuration and storing member IDs which you should review before applying.
Guidance: This skill is a documentation-only guide for Feishu message formatting and is coherent with its description, but before following its commands you should: (1) review and approve the suggested openclaw config change (channels.feishu.renderMode) because it modifies agent-wide behavior and requires a gateway restart; (2) be deliberate about storing member IDs — treat open_id/App ID values as potentially sensitive identifiers and store them securely (or in ephemeral/test data first); (3) test the advice in a non-production environment to confirm it behaves as expected; and (4) avoid running commands you don't understand and verify you trust the source since the SKILL.md will not itself install code or request credentials but does instruct config changes and persistent storage.

Purpose & Capability: okName/description match the content: the SKILL.md is a messaging/formatting guide for Feishu group chats and all instructions (message formats, @ mentions, member ID collection, renderMode config) relate to that purpose.
Instruction Scope: noteInstructions stay within the stated domain (how to send messages, mention users, and gather IDs). Two things to note: (1) it tells the operator to change global OpenClaw config (channels.feishu.renderMode) and restart the gateway, which affects agent-wide behavior beyond a single message; (2) it recommends keeping a 'memory file' of member IDs (open_id/cli_xxx), which creates persistent storage of user/bot identifiers. Both are relevant to the purpose but warrant review before applying.
Install Mechanism: okNo install spec or code files are present — this is instruction-only, so nothing will be downloaded or written by an installer step.
Credentials: okThe skill declares no required environment variables, credentials, or config paths. It asks operators to obtain Feishu App IDs and open_ids as part of normal usage; no unrelated secrets are requested.
Persistence & Privilege: notealways:false and model invocation is allowed (normal). The SKILL.md instructs changing OpenClaw config and storing member lists, which are legitimate for this use but have persistence/privilege implications — these changes affect agent-wide behavior and create stored identifiers that may contain personal info.