Skill flagged — suspicious patterns detected
ClawHub Security flagged this skill as suspicious. Review the scan results before using.
AI Fortune Teller
v1.0.0AI玄学大师 - 八字命理、塔罗占卜、运势分析。基于传统命理典籍与现代AI技术融合的智能占卜工具。
⭐ 0· 50·0 current·0 all-time
by姜AGI@jackjls
MIT-0
Download zip
LicenseMIT-0 · Free to use, modify, and redistribute. No attribution required.
Security Scan
OpenClaw
Suspicious
high confidencePurpose & Capability
The skill claims to run as an instruction-only fortune-teller and the features (八字、塔罗、K线图、画像) align with the included scripts. However, the registry metadata and SKILL.md declare no required environment variables or binaries, while the bundled scripts clearly require a MiniMax API key (MINIMAX_API_KEY / MINIMAX_API_HOST) and expect utilities like curl, jq, and Python. That mismatch suggests the metadata is incomplete and/or misleading.
Instruction Scope
SKILL.md tells the user to call the agent via chat or configure an API key for standalone use, but the actual scripts (scripts/fortune.sh, kline_generator.py, portrait_generator.py) do more: they read a local ~/.clawd/.env file and export its contents, call remote MiniMax endpoints with user-provided personal data (names, birth dates), and write output to /tmp. Reading and exporting a whole .clawd/.env is scope creep (may load unrelated secrets). The scripts also assume local CLI tools (curl, jq) and Python runtime availability that the skill metadata does not declare.
Install Mechanism
There is no remote install step or download from external URLs; the skill is instruction-only with bundled scripts, so there is no high-risk install mechanism. Files included are local scripts and markdown; nothing is fetched from arbitrary third-party URLs during install.
Credentials
The skill metadata lists no required env vars, but the code requires MINIMAX_API_KEY (and optional MINIMAX_API_HOST). The fortune.sh script loads and exports all variable lines from $HOME/.clawd/.env, which can inadvertently expose unrelated secrets stored there. Requiring an API key for the external MiniMax service is reasonable for functionality, but failing to declare that requirement and reading a shared .env file are disproportionate and risky.
Persistence & Privilege
The skill does not request always:true and can be invoked by the user only. It writes output files (e.g., /tmp/kline_<name>_YYYYMMDD.json) and calls external APIs, but it does not modify other skills or system-wide configuration. File writes to /tmp and local JSON storage are normal for this type of tool.
What to consider before installing
Before installing or running this skill: 1) Know that the bundled scripts call an external MiniMax API and expect MINIMAX_API_KEY (and optionally MINIMAX_API_HOST) even though the skill metadata does not declare it—if you don't set the key the scripts will fail. 2) The shell script sources and exports everything in $HOME/.clawd/.env; review that file first (it could contain other credentials) or run the skill in an isolated account/container to avoid exposing unrelated secrets. 3) Ensure your environment has curl, jq, and Python3 available as the scripts call them but the skill doesn't declare those binaries. 4) Understand that personal data (names, birth dates, birthplace) are sent to the external API endpoints—if that is sensitive, consider not using or use throwaway data. 5) If you proceed, supply only a dedicated MiniMax API key you can revoke and run the scripts in a sandboxed environment; request the author to update the skill metadata to declare required env vars and runtime binaries (MINIMAX_API_KEY, MINIMAX_API_HOST, curl, jq, python3) and to stop exporting arbitrary .clawd/.env content.Like a lobster shell, security has layers — review code before you run it.
latestvk97e4zx2z8xvhgxs5ykpprrcmx848fvf
License
MIT-0
Free to use, modify, and redistribute. No attribution required.
Runtime requirements
🔮 Clawdis