Back to skill
Skillv1.0.0
ClawScan security
发布抖音短视频_无限 · ClawHub's context-aware review of the artifact, metadata, and declared behavior.
Scanner verdict
SuspiciousApr 19, 2026, 12:13 PM
- Verdict
- suspicious
- Confidence
- medium
- Model
- gpt-5-mini
- Summary
- The skill's instructions match its stated purpose (uploading a Douyin/TikTok video) but require local browser control and GUI automation (pyautogui/clipboard) without declaring those host-level privileges, which raises privacy and safety concerns.
- Guidance
- This skill is coherent for automating uploads but asks the agent to control your browser profile, clipboard, and OS file dialog (via pyautogui). Before installing: 1) only use with a trusted OpenClaw environment and a sandbox/test account (not your primary account); 2) ensure you understand and consent to giving the agent GUI automation and clipboard access; 3) confirm pyautogui/tkinter availability and that no additional installers will be run silently; 4) avoid enabling autonomous runs unless you trust the skill—manual invocation is safer; 5) if you must proceed, monitor the first runs closely and restrict which folders/files the agent may access.
Review Dimensions
- Purpose & Capability
- okThe name/description (posting videos to Douyin) aligns with the instructions: browser automation, navigating the creator upload page, filling metadata, and using a file dialog to select a video. No unrelated credentials or services are requested.
- Instruction Scope
- concernThe SKILL.md instructs the agent to start and drive an OpenClaw-hosted Chrome profile and to execute a local Python GUI-automation snippet (pyautogui + tkinter) to operate the OS file dialog and clipboard. That requires running code on the host, controlling the clipboard, and interacting with local files — capabilities that go beyond simple web API use and could access arbitrary local files or clipboard contents if misused.
- Install Mechanism
- noteThis is instruction-only (no install spec), so nothing is written to disk by the skill itself. However, the instructions assume availability of pyautogui and tkinter on the host; the skill does not declare or install these dependencies, which may lead to unexpected behavior or ad-hoc installs by the agent.
- Credentials
- concernThe skill requests no environment variables or credentials, but implicitly requires access to the OpenClaw-managed browser profile (session cookies/auth) and the host GUI/file system/clipboard. These are high-privilege resources for a skill to use and are not explicitly declared or limited in the metadata.
- Persistence & Privilege
- okalways:false and default autonomous invocation are set; the skill is user-invocable only and does not claim permanent inclusion. Note: if allowed to run autonomously, its host-control instructions increase risk—evaluate agent autonomy settings before enabling.