Skill flagged — suspicious patterns detected
ClawHub Security flagged this skill as suspicious. Review the scan results before using.
DingTalk Skills
v2.2.3钉钉操作助手,支持查人、查部门、发消息、预约会议、审批管理、日程查询和知识库操作等功能。
⭐ 0· 137·0 current·0 all-time
byHione@hioneowner
MIT-0
Download zip
LicenseMIT-0 · Free to use, modify, and redistribute. No attribution required.
Security Scan
OpenClaw
Suspicious
medium confidencePurpose & Capability
Name/description match the included scripts (user/department/search, messages, meetings, approvals, docs). However the registry metadata claims no required environment variables or binaries, while SKILL.md and the code clearly require DINGTALK_APP_KEY and DINGTALK_APP_SECRET (and optionally DINGTALK_ROBOT_CODE) and expect a Python runtime. That mismatch is unexplained and reduces trust.
Instruction Scope
The SKILL.md instructions are specific and limited to DingTalk workflows (search user → get IDs → call API scripts). The runtime steps and example commands in SKILL.md align with the included Python scripts and do not instruct reading unrelated files or sending data to unknown endpoints—network calls go to api.dingtalk.com and oapi.dingtalk.com only.
Install Mechanism
There is no install spec (no downloads), which is lower risk, but the bundle contains many Python scripts. The registry did not declare required binaries (python) or dependencies (requests). package.json is present (Node-style) but the implementation is Python-heavy—this inconsistency suggests sloppy packaging and may surprise integrators who expect declared runtime requirements.
Credentials
The actual code requires DINGTALK_APP_KEY and DINGTALK_APP_SECRET (and optionally DINGTALK_ROBOT_CODE) which are appropriate for DingTalk API access. However the registry metadata lists no required env vars or primary credential. The omission of these required credentials from metadata is a meaningful discrepancy and could cause accidental credential exposure or misconfiguration.
Persistence & Privilege
Skill does not request permanent 'always' inclusion and does not modify other skills or system-wide settings. It performs API operations only and runs scripts on-demand; autonomous invocation is allowed but that is the platform default.
What to consider before installing
This package implements many valid DingTalk API actions and will call DingTalk endpoints using credentials. However the registry metadata is incomplete: the SKILL.md and code require DINGTALK_APP_KEY and DINGTALK_APP_SECRET (and optionally DINGTALK_ROBOT_CODE) and the environment needs Python and the 'requests' library—none of these were declared in the registry. Before installing or using the skill: 1) Verify the source (owner/homepage unknown) and review the included scripts yourself or with an engineer. 2) Only provide a DingTalk app key/secret for an app with the minimum permissions needed; avoid using highly privileged org keys. 3) Run the skill in a restricted environment (isolated container) and rotate credentials after testing. 4) Ensure Python and the requests package are available, and consider adding declared requirements to the skill metadata. If you need higher assurance, ask the publisher to correct the metadata (declare required env vars and runtime) or provide a reproducible install/packaging specification.Like a lobster shell, security has layers — review code before you run it.
latestvk97d2y4efbeh2m823gvemk40nn83fdmk
License
MIT-0
Free to use, modify, and redistribute. No attribution required.