Skillv1.0.0

ClawScan security

TikTok Shop Automation · ClawHub's context-aware review of the artifact, metadata, and declared behavior.

Scanner verdict

ReviewMar 15, 2026, 2:27 AM

Verdict: Review
Confidence: medium
Model: gpt-5-mini
Summary: The code largely matches a TikTok Shop automation tool, but there are several mismatches and surprises (metadata vs runtime config, credential storage, and data-sending behaviour) that you should understand before installing.
Guidance: What to check before installing: - Confirm credential handling: the SKILL.md suggests using environment variables, but the code stores credentials and settings under ~/.clawhub/tiktok-shop (config.json and credentials.json). If you install, expect secrets to be written to disk; ensure you are comfortable with that storage location and permissions. - Review destinations you will send data to: enabling Feishu integration or configuring webhooks will transmit orders/customers/reports to those external endpoints. Only configure trusted webhook URLs and Feishu app tokens/table IDs when you understand what data will be sent. - Use Mock mode first: the code defaults to a Mock API for TikTok; test in mock mode until you verify behavior. Switch to real API only after reviewing the code and testing in an isolated environment. - Audit sensitive exports: commands and SKILL.md allow exporting customer lists and reports. If you have PII in your store, confirm export and notification settings before running scheduled automations. - Code quality notes: there are minor mismatches and bugs (for example, some functions shadow/import names which can cause runtime errors). Verify and run tests in a sandboxed VM or container before connecting production accounts. - Verify provenance: registry metadata lists a repository and homepage, but source 'Source' field here is unknown. If you rely on this skill in production, prefer packages from verified authors or review the full source and maintainers. If you want, I can: (1) point out exact lines where credentials are persisted, (2) show where data is sent to Feishu/webhooks, or (3) suggest safe minimal configuration steps to test in mock mode.

Review Dimensions

Purpose & Capability: noteThe code implements TikTok Shop automation features (mock API, product/order/video management, Feishu integration) which aligns with the declared purpose. However metadata/registry claims no required env vars or primary credential while SKILL.md and the code expect TikTok API credentials and optional Feishu credentials/config—this discrepancy is incoherent and should be clarified.
Instruction Scope: noteSKILL.md instructs use of API keys, webhook secrets and commands that export customer/order data. The runtime code writes/reads configuration and credentials from the user's home directory (~/.clawhub/tiktok-shop), exports reports to disk (reports/), and will transmit orders/customers/reports to configured Feishu endpoints or webhooks. These actions are consistent with the tool's purpose but the README/SKILL.md do not explicitly call out that credentials will be persisted on disk and sensitive customer data can be sent to external services.
Install Mechanism: okThere is no external install script or remote download in the manifest; this is a code-only package that runs in the OpenClaw runtime/Node environment. No unusual installers or remote archives were found. Runtime uses standard Node libs (inquirer, chalk, uuid) and Node's fetch (v18+).
Credentials: concernRegistry metadata declares no required env vars or primary credential, but SKILL.md requests TIKTOK_SHOP_API_KEY, TIKTOK_SHOP_API_SECRET, TIKTOK_SHOP_SELLER_ID and optional webhook secret; the code instead persists credentials into ~/.clawhub/tiktok-shop/credentials.json and config.json. Requesting TikTok and Feishu credentials is reasonable for this skill, but the mismatch between declared requirements and actual runtime credential usage is a red flag. Also: enabling Feishu will transmit order/customer data to Feishu endpoints/webhooks—ensure you trust those destinations.
Persistence & Privilege: okThe skill persists configuration and (optionally) credentials in the user's home directory under ~/.clawhub/tiktok-shop. Credentials are saved to credentials.json and the code attempts to set file permissions to 0600 on non-Windows platforms. The skill does not request 'always: true' and does not modify other skills; autonomous invocation is enabled by default (normal).