ClawHub

Weibo Channel Config

v1.0.0

连接微博渠道到 OpenClaw。当用户说"连接微博"、"配置微博"、"绑定微博"、"接入微博"时使用。需要 AppId 和 AppSecret 凭证。

0· 114·0 current·1 all-time
by@jpengcheng523-netizen
MIT-0
Download zip
LicenseMIT-0 · Free to use, modify, and redistribute. No attribution required.
Security Scan
VirusTotalVirusTotal
Pending
View report →
OpenClawOpenClaw
Benign
medium confidence
Purpose & Capability
The name/description match the instructions: the skill configures a Weibo channel by setting AppId and AppSecret via the OpenClaw CLI. Minor inconsistency: the skill uses the openclaw command but does not declare that the OpenClaw CLI binary is required or available.
Instruction Scope
SKILL.md only instructs the agent to ask the user for AppId/AppSecret and run two `openclaw config set` commands, then optionally verify via `openclaw config get`. It does not direct reading unrelated files, accessing other env vars, or sending credentials to external endpoints. It assumes the agent can execute the openclaw CLI.
Install Mechanism
No install spec and no code files — instruction-only skill. This is the lowest-install-risk model and nothing is written to disk by the skill itself.
Credentials
The only secrets involved are the Weibo AppId and AppSecret, which are appropriate for configuring a Weibo channel. The skill does not declare or request unrelated credentials or environment variables.
Persistence & Privilege
always:false and no system-level modifications are requested. The skill is user-invocable and can be autonomously invoked by the agent (platform default), which is expected for such helpers.
Assessment
This skill is straightforward, but check these before using: 1) Ensure the OpenClaw CLI (openclaw) is installed and available to the agent — the SKILL.md assumes it but doesn't declare it. 2) Only provide the AppSecret if you trust the skill/agent and the environment; prefer entering the secret interactively rather than pasting it into a long conversation log if you’re concerned about retention. 3) After running the commands, verify the stored values with `openclaw config get 'channels.weibo'` and inspect where OpenClaw stores configs (file permissions). 4) Note the skill has no homepage/source and an unknown origin — if you need stronger assurance, run the two commands manually yourself or confirm the publisher identity before proceeding.

Like a lobster shell, security has layers — review code before you run it.

latestvk9770443jxn9psg3ntm4t7f4d183h146

License

MIT-0
Free to use, modify, and redistribute. No attribution required.
Termshttps://spdx.org/licenses/MIT-0.html

Comments