ClawHub
Skill flagged — suspicious patterns detected

ClawHub Security flagged this skill as suspicious. Review the scan results before using.

Mowenskill Publish

v1.0.2

Publish, edit, or configure notes on Mowen (墨问) via Open API. Use when user mentions 墨问, mowen, 发布笔记, publish note, or wants to create social-media-style not...

0· 71·0 current·0 all-time
by@jacobluo
MIT-0
Download zip
LicenseMIT-0 · Free to use, modify, and redistribute. No attribution required.
Security Scan
VirusTotalVirusTotal
Benign
View report →
OpenClawOpenClaw
Suspicious
medium confidence
Purpose & Capability
The name/description (publish notes on Mowen) align with the included scripts and reference documentation: the Python script implements create/edit/settings and image upload against open.mowen.cn. However, the package metadata lists no required environment variables or primary credential while the SKILL.md and scripts clearly require MOWEN_API_KEY — an inconsistency between declared requirements and actual capability.
Instruction Scope
SKILL.md instructs the agent to collect note content and run scripts that only call the Mowen Open API and upload endpoints; it does not instruct reading unrelated system files or exfiltrating data. It does rely on the user (or agent) supplying local image file paths which the script will read when performing uploads — this is expected for an uploader but worth noting.
Install Mechanism
There is no install spec (instruction-only skill with code files included). No remote downloads or package installs are performed by the skill metadata; the Python script uses only the standard library. This is low install risk.
!
Credentials
The script requires an API credential (MOWEN_API_KEY) to operate but the skill metadata declares no required environment variables or primary credential — this is a meaningful mismatch. The script will use that API key to contact open.mowen.cn and to obtain OSS upload forms (which then point to third-party endpoints returned by the API). The script will also read local files when given local image paths; ensure you only provide files you intend to upload. The missing declared env var reduces transparency about what secrets this skill needs.
Persistence & Privilege
The skill does not request always:true and has no install behavior that modifies other skills or global agent settings. It does not request persistent system-wide privileges.
What to consider before installing
This skill appears to implement an honest Mowen note publisher, but there are a few red flags you should address before installing or using it with real credentials: 1) The SKILL.md and scripts require MOWEN_API_KEY, but the skill metadata does not declare this — treat that as a transparency/packaging bug. 2) The script will read local image files if you give local paths (intended behavior), so only supply files you want uploaded. 3) run_tests.sh contains a hard-coded absolute path (likely leftover from the author) — benign but sloppy. Recommended actions: review scripts/publish_note.py yourself, verify the BASE_URL (https://open.mowen.cn) and endpoints, only provide an API key you control (and revoke it if unsure), run the included tests locally in a safe environment, and ask the publisher to update metadata to declare MOWEN_API_KEY and remove hard-coded paths before trusting the skill in production.

Like a lobster shell, security has layers — review code before you run it.

latestvk97c8a7m2zejazs1hmhbc0t08183dvve

License

MIT-0
Free to use, modify, and redistribute. No attribution required.
Termshttps://spdx.org/licenses/MIT-0.html

Comments