Skill flagged — suspicious patterns detected
ClawHub Security flagged this skill as suspicious. Review the scan results before using.
WhatsApp Utils
v1.0.0Phone number formatting, cache inspection, contact export, and message ID generation
⭐ 0· 855·0 current·0 all-time
byMarcos Santos@marcosrippel
MIT-0
Download zip
LicenseMIT-0 · Free to use, modify, and redistribute. No attribution required.
Security Scan
OpenClaw
Suspicious
medium confidencePurpose & Capability
The script's behavior (reading an OpenClaw WhatsApp credentials/cache directory and exporting contacts) matches the skill description. However the package metadata declares no required binaries or env vars while the runtime expects the `node` binary and optionally uses OPENCLAW_STATE_DIR. The implicit dependency on Node and the implicit use of an OpenClaw state path are mismatches between declared requirements and actual capabilities.
Instruction Scope
SKILL.md instructs the agent to exec a local Node script which (for cache-info and export-contacts) reads files under the OpenClaw credentials path (defaulting to ~/.openclaw/credentials/whatsapp/default or OPENCLAW_STATE_DIR). The README does not explicitly disclose that it will read that directory or that contacts.json will be parsed and printed. While the reads are coherent with the stated purpose, the instructions omit privacy/security disclosures about accessing local WhatsApp state and personal contacts.
Install Mechanism
There is no install spec (instruction-only with an included scripts/utils.js). This is low-risk from an install perspective because nothing external is downloaded or written during install. The runtime does require Node to execute the script, which is not declared.
Credentials
The skill declares no required environment variables, but the code reads process.env.OPENCLAW_STATE_DIR if present and otherwise uses a default path in the user's home directory. That ENV usage is reasonable for locating OpenClaw state, but it is not declared in metadata. Also the skill will read local credential/cache files (contacts.json and other files) — which is proportional to cache inspection/export features but involves sensitive personal data.
Persistence & Privilege
The skill does not request persistent presence, does not modify other skills or system settings, and does not require elevated privileges. always is false and autonomous invocation is allowed (platform default).
What to consider before installing
This skill appears to do what it claims, but note three practical issues before installing: (1) SKILL.md runs a local Node script — you must have the `node` binary available even though the registry metadata lists no required binaries; (2) the script reads your OpenClaw WhatsApp state directory (default ~/.openclaw/credentials/whatsapp/default or overridden by OPENCLAW_STATE_DIR) and will parse contacts.json and other cache files — those contain personal data you may not want exported; (3) the metadata does not disclose use of OPENCLAW_STATE_DIR. The skill does not make network calls, but it will print local contact data and cache statistics to stdout. If you plan to use it, inspect scripts/utils.js yourself, ensure you trust the author, consider running it in a controlled environment (or on a copy of your WhatsApp state), and verify Node is present. If you need stronger assurances, ask the author to: declare the node binary and OPENCLAW_STATE_DIR in metadata, and explicitly document which local files are read and what data is printed.Like a lobster shell, security has layers — review code before you run it.
baileysvk978nfzdbttxerwsq9jfw1kwmh81db5qlatestvk978nfzdbttxerwsq9jfw1kwmh81db5qofflinevk978nfzdbttxerwsq9jfw1kwmh81db5qphonevk978nfzdbttxerwsq9jfw1kwmh81db5qutilitiesvk978nfzdbttxerwsq9jfw1kwmh81db5qutilsvk978nfzdbttxerwsq9jfw1kwmh81db5qwhatsappvk978nfzdbttxerwsq9jfw1kwmh81db5q
License
MIT-0
Free to use, modify, and redistribute. No attribution required.