ClawHub
Skill flagged — suspicious patterns detected

ClawHub Security flagged this skill as suspicious. Review the scan results before using.

Intel Briefing

v1.4.0

全域情报简报生成系统。每日定时或手动触发,从多信源采集、评分、去重、输出HTML情报简报。覆盖国际形势、AI应用、社会民生、潮流热点四大分类。触发词:情报简报、早报、午报、晚报、推送简报、生成简报、daily briefing。

0· 68·1 current·1 all-time
by@lodligos
MIT-0
Download zip
LicenseMIT-0 · Free to use, modify, and redistribute. No attribution required.
Security Scan
VirusTotalVirusTotal
Suspicious
View report →
OpenClawOpenClaw
Suspicious
medium confidence
Purpose & Capability
The name/description match the behavior: it collects news, scores, dedups, and writes an HTML briefing. However the SKILL.md claims '不依赖任何外部 CLI 工具' and 'zero external dependencies' while the cron prompt files explicitly instruct using Bash + curl against r.jina.ai as a P0 fetch fallback. That is an inconsistency (sloppy or outdated docs) that affects where content is sent.
!
Instruction Scope
Runtime prompts instruct the agent to run read_daily/read_memory/edit_daily (read and modify the user's personal memory/daily notes) and to save files to ~/my-project/download. They also include explicit curl commands to https://r.jina.ai/https://<target>, which sends target URLs and fetched page content to a third‑party proxy. Reading/writing user memory and sending fetched pages externally are beyond merely 'fetching public news' and are privacy‑sensitive. The instructions also demand strict, autonomous cron behavior (multiple scheduled runs and retry logic).
Install Mechanism
This is instruction-only with no install spec and only a small helper script (setup-cron.sh) that creates a download directory and prints cron-creation instructions. No archives or external installers are downloaded by the skill itself.
!
Credentials
The skill declares no environment variables or credentials, but its runtime behavior requires reading and updating local memory files (read_daily, read_memory, edit_daily) and writing to a download directory. Those file accesses are sensitive and were not declared in metadata as required config paths. The external curl fallback exposes URLs/pages to a third party (r.jina.ai). Both the undisclosed file access and external network forwarding are disproportionate if you expect a purely read‑only news aggregator.
Persistence & Privilege
The skill is not marked always:true and does not request elevated platform privileges. It does instruct the agent to edit the user's daily/long-term memory (edit_daily), which is normal for a deduplication workflow but is an impactful write permission and should be considered before enabling automated cron runs.
What to consider before installing
This skill appears to do what it claims (collect, score, dedupe, output HTML), but there are two things to watch for before installing: 1) It will read and update your personal memory/daily notes (read_daily/read_memory/edit_daily). If those files contain sensitive personal or operational data, the skill will access them — confirm you are comfortable granting that. 2) The fallback P0 fetch uses curl to https://r.jina.ai/https://<target>, which forwards target URLs/content to a third party; this can leak which pages you requested and their content. If you prefer to avoid that, remove or modify the fallback to rely only on OpenClaw's internal web_fetch or an approved fetcher. Also note the SKILL.md has inconsistent statements (claims no external CLI but the prompts use curl), which suggests the materials are out of date—ask the author to clarify and to document exactly which tools/endpoints will be used. Recommendations: run the skill in an isolated project workspace, review/backup your memory files before enabling cron, disable automatic cron until you verify behavior, and replace the r.jina.ai fallback with a trusted extractor or disable that step if you cannot trust the proxy.

Like a lobster shell, security has layers — review code before you run it.

ai-newsvk97bgffexwp2az094eq3x9by8x84d7t6briefingvk97bgffexwp2az094eq3x9by8x84d7t6intelligencevk97bgffexwp2az094eq3x9by8x84d7t6latestvk971g94mg62nvk9m4smjgfaq2n84g507monitoringvk97bgffexwp2az094eq3x9by8x84d7t6newsvk97bgffexwp2az094eq3x9by8x84d7t6

License

MIT-0
Free to use, modify, and redistribute. No attribution required.
Termshttps://spdx.org/licenses/MIT-0.html

Comments