critical
suspicious.exposed_secret_literal
- Location
- API_KEY_SETUP.md:55
- Finding
- File appears to expose a hardcoded API secret or token.
内容工厂
AdvisoryAudited by Static analysis on May 10, 2026.
Overview
Detected: suspicious.exposed_secret_literal
Findings (4)
Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.
What this means
Your API keys could be exposed in the conversation transcript, terminal output, logs, or screenshots.
Why it was flagged
The setup check prints the full Tavily API key from the local credential store; the same pattern is shown for Brave. Verifying a credential should not reveal the secret value.
Skill content
python3 -c "import json; print(json.load(open('/root/.openclaw/credentials/tavily.json'))['api_key'])"Recommendation
Change the check to verify file presence or make a test request without printing the key; mask all secret output.
What this means
Publishing or API calls could use an unintended WeChat account or leak real provider credentials included with the skill.
Why it was flagged
The documentation shows an actual-looking WeChat AppSecret and also describes hardcoded default credentials as a fallback.
Skill content
WECHAT_APP_SECRET=a6800143c0...; 5. 硬编码默认值(最低优先级)仅作为后备方案
Recommendation
Remove all real/default secrets from the package, require user-supplied credentials only, and rotate any exposed keys.
What this means
The agent may be able to publish drafts or media to a WeChat account if credentials are configured.
Why it was flagged
The publishing step can mutate a WeChat Official Account/public content surface, but the artifacts do not show a clear final approval gate immediately before publishing.
Skill content
3. 发布到微信公众号(包含封面图) ... python scripts/wechat_publish.py --html ... --cover ...
Recommendation
Require explicit user confirmation immediately before any publish/upload action and clearly distinguish draft generation from public posting.
What this means
Installation may fail or prompt ad-hoc package installation not reflected in the registry metadata.
Why it was flagged
The skill has a mandatory external binary/runtime dependency even though the registry says no required binaries and no install spec.
Skill content
yt-dlp tool is required for YouTube content extraction ... Provide installation command: pip install yt-dlp
Recommendation
Declare yt-dlp, Python package dependencies, and required credentials in metadata or installation documentation.
Findings (4)
critical
suspicious.exposed_secret_literal
- Location
- CONFIGURATION.md:100
- Finding
- File appears to expose a hardcoded API secret or token.
critical
suspicious.exposed_secret_literal
- Location
- scripts/create_default_cover.py:238
- Finding
- File appears to expose a hardcoded API secret or token.
critical
suspicious.exposed_secret_literal
- Location
- scripts/generate_cover_photo.py:433
- Finding
- File appears to expose a hardcoded API secret or token.