Skill flagged — suspicious patterns detected
ClawHub Security flagged this skill as suspicious. Review the scan results before using.
AI Info Digest
v1.0.0微信公众号文章摘要整理工具。获取用户关注的微信公众号在指定时间范围内发布的文章,逐篇阅读全文,然后按主题聚合整理成一篇简明的摘要文章,标注来源便于评估各公众号的价值。 当用户提到以下场景时触发:整理公众号文章、公众号周报/日报、微信文章摘要、帮我看看公众号最近发了什么、总结一下这几天的公众号内容、公众号阅读整理、...
⭐ 0· 51·0 current·0 all-time
MIT-0
Download zip
LicenseMIT-0 · Free to use, modify, and redistribute. No attribution required.
Security Scan
OpenClaw
Suspicious
medium confidencePurpose & Capability
The name/description (WeChat/public-account digest) aligns with the runtime instructions: the SKILL.md explains how to locate articles on Zhihu, official sites, or via web search and then summarize them. The included wechat-accounts.json matches the stated purpose and supplies example accounts. Requiring a browser-reading tool (Claude in Chrome MCP) is reasonable for extracting web article text.
Instruction Scope
The SKILL.md tells the agent to read a configuration file from the user's home (~/.claude/skills/wechat-digest/wechat-accounts.json) and to save digests to ~/Documents/ai-info-digest/{date}_digest.md. The manifest metadata claimed 'Required config paths: none', so the runtime instructions reference local file I/O that is not declared in the metadata. The skill also instructs the agent to navigate arbitrary web pages and extract full page text (including Zhihu and other sites). These behaviors are coherent with the feature but broaden the scope (reading/writing files and browsing with potential access to logged-in sessions).
Install Mechanism
This is an instruction-only skill with no install spec and no code files to execute. That minimizes install-time risk (nothing is downloaded or installed by the skill).
Credentials
No environment variables or credentials are requested, which is appropriate. However, the skill requires the 'Claude in Chrome' MCP browsing tool and will navigate and extract page text. That tool may leverage browser state (cookies, authenticated sessions); consequently the agent could read pages that require login using the user's browser session. The skill also reads/writes files in the user's home directory (config + saved digest). Both are proportionate to the task but are privacy-sensitive and were not reflected in the declared config-path metadata.
Persistence & Privilege
The skill is not always-enabled and does not request elevated platform privileges. It will write output files to the user's Documents folder and expects a per-skill config file under ~/.claude/skills/..., which is normal for an instruction-only skill but constitutes persistent files on disk. Autonomous invocation is allowed (default) — combine that with browsing access if you are concerned about automatic runs.
What to consider before installing
This skill mostly does what its description promises (collecting and summarizing WeChat/public-account content), but check a few things before installing:
- The SKILL.md expects a local config file at ~/.claude/skills/wechat-digest/wechat-accounts.json and writes digests to ~/Documents/ai-info-digest/. The registry metadata did not declare these config paths — if you care about filesystem changes, inspect or create that config file yourself and verify where outputs will be saved.
- The skill requires a browser-reading tool (Claude in Chrome MCP) which can access web pages using your browser session. If you are logged into sites (Zhihu, WeChat, etc.), the tool may read pages that require authentication — consider running it only when you are comfortable with that access or using a separate browser profile.
- There are no secrets requested, and no installers or remote-download steps, which reduces supply-chain risk. Still, review the wechat-accounts.json to remove any private entries and confirm the output path before running.
If you want to be extra cautious: create the expected config path yourself with a minimal accounts list, run the skill in a controlled environment/profile, and verify the files it writes.Like a lobster shell, security has layers — review code before you run it.
aivk9718e5zaga5dwn4kvrxtj20qh84d3ahdigestvk9718e5zaga5dwn4kvrxtj20qh84d3ahlatestvk9718e5zaga5dwn4kvrxtj20qh84d3ahnewsvk9718e5zaga5dwn4kvrxtj20qh84d3ahwechatvk9718e5zaga5dwn4kvrxtj20qh84d3ah
License
MIT-0
Free to use, modify, and redistribute. No attribution required.