ai-news-collectors
v1.0.0AI 新闻聚合与热度排序工具。当用户询问 AI 领域最新动态时触发,如:"今天有什么 AI 新闻?""总结一下这周的 AI 动态""最近有什么火的 AI 产品?""AI 圈最近在讨论什么?"。覆盖:新产品发布、研究论文、行业动态、融资新闻、开源项目更新、社区病毒传播现象、AI 工具/Agent 热门项目。输出中文摘要列表,按热度排序,附带原文链接。
⭐ 41· 9.6k·95 current·103 all-time
byKenX@kenxcomp
MIT-0
Download zip
LicenseMIT-0 · Free to use, modify, and redistribute. No attribution required.
Security Scan
OpenClaw
Benign
high confidencePurpose & Capability
Name/description match the instructions: the SKILL.md explains multi-dimensional web searching, cross-checking, de-duplication and heat-ranking of AI news. It does not request unrelated credentials, binaries, or system access that would be inconsistent with an aggregator.
Instruction Scope
Instructions direct the agent to perform many web searches (8–12+), fetch full articles (mentions web_fetch) and synthesize 15–25 items. This is coherent for a news collector, but it implies extensive outbound browsing and scraping (including paywalled content, community forums, and social media). The skill does not instruct reading local files or exfiltrating system secrets, but it assumes the agent has a web-fetching tool available (not declared).
Install Mechanism
Instruction-only skill with no install spec and no code files — lowest install risk. Nothing is downloaded or written to disk by the skill itself.
Credentials
No environment variables, credentials, or config paths are requested. The sources list includes many public sites (news outlets, substack, GitHub, Reddit) but the skill does not require tokens or keys to operate.
Persistence & Privilege
always:false and no install-time persistence. The skill does not request to modify other skills or agent-wide settings. It can be invoked autonomously by default (platform normal), but it does not request elevated or permanent privileges.
Assessment
This skill appears coherent for aggregating AI news. Things to consider before enabling: (1) it assumes the agent can browse and fetch arbitrary web pages (web_fetch or similar); confirm browsing is enabled and decide whether you trust outbound web access. (2) it will visit many public sites (news, forums, GitHub, social media) and may encounter paywalled pages — the instructions say to mark paywalled items, but don’t supply paywall credentials. (3) no secrets are requested, so credential exfiltration risk is low, but the agent will make many external requests — if you’re concerned about network traffic, set rate limits or restrict which domains it can access. (4) expect potential hallucinations if sources are sparse; consider reviewing a sample run to verify sourcing and formatting. If any of the referenced sites require authenticated APIs (Twitter/X, private subscriptions), provide only vetted credentials and prefer official APIs over scraping.Like a lobster shell, security has layers — review code before you run it.
latestvk979nv754t8j00xz759tk4vt1d80v5m3
License
MIT-0
Free to use, modify, and redistribute. No attribution required.