Baidu Drive
v1.4.3百度网盘(Baidu Drive)文件管理 — 上传、下载、转存、分享、搜索、移动、复制、重命名、创建文件夹。 TRIGGER: 用户提及"百度网盘/bdpan/网盘/云盘/baidu drive/Baidu Drive"并涉及文件操作。 DO NOT TRIGGER: 非文件存储操作,或使用其他云盘服务时。
⭐ 2· 960·0 current·0 all-time
bybaidu-netdisk@may-yaha
MIT-0
Download zip
LicenseMIT-0 · Free to use, modify, and redistribute. No attribution required.
Security Scan
Capability signals
These labels describe what authority the skill may exercise. They are separate from suspicious or malicious moderation verdicts.
OpenClaw
Benign
high confidencePurpose & Capability
Name/description (Baidu Drive file management) matches the included CLI commands, examples, and management scripts. The skill asks to run bdpan CLI commands and provides wrappers/scripts to install/login/update/uninstall — all expected for this purpose. Optional environment variables referenced (BDPAN_BIN, BDPAN_INSTALL_DIR, BDPAN_CONFIG_DIR/PATH) are plausible for a CLI integration and are not required by default.
Instruction Scope
SKILL.md limits operations to /apps/bdpan/ and imposes explicit safety constraints (no path traversal, no printing of config.json, must use the provided login.sh). The runtime instructions tell the agent to run install/login/update scripts and bdpan commands only. Note: the skill instructs the agent to download and execute an external installer during installation and to spawn background downloads for large files; these are expected for the stated functionality but expand the agent's runtime behavior (network download, file writes, background processes).
Install Mechanism
Install script downloads an installer from Baidu CDN (issuecdn.baidupcs.com), makes it executable and runs it. The script contains SHA256 checksums for platforms and performs local checksum validation when sha256sum/shasum is available. update.sh also downloads a skill ZIP from an official pan.baidu.com config endpoint and enforces checksum verification. These are appropriate install/update mechanisms for a CLI integration, but there are two caveats: (1) SKILL.md text claims the install script does NOT perform local SHA256 verification, which contradicts the script content (the script does verify if checksum tool exists); and (2) install.sh will skip the checksum if the host lacks sha256sum/shasum and will warn instead — leaving integrity reliant on HTTPS in that case.
Credentials
The skill declares no required credentials or config paths. Scripts optionally honor BDPAN_* environment variables (to use local binary or alternate install/config dirs), which is reasonable and not excessive. No unrelated cloud credentials or tokens are requested by the skill. The skill explicitly forbids the agent from reading or printing the config file (~/.config/bdpan/config.json), which contains sensitive tokens.
Persistence & Privilege
The skill does not request always:true and does not modify other skills' configurations. Installation writes to user-local paths (e.g., ~/.local/bin, ~/.config/bdpan) which is expected for installing a CLI. update.sh requires user confirmation (and contains checks to avoid automated --yes in detected agent environments).
Assessment
This skill appears to do what it says: it wraps a bdpan CLI for Baidu Drive operations and includes installation, login, update and uninstall scripts. Before installing, review and consider the following: 1) Installation downloads and executes a binary from Baidu's CDN — ensure you trust that source and preferably have a local sha256sum/shasum available so the script can verify the installer. 2) SKILL.md claims the installer does not perform local SHA256 checks, but the install.sh does attempt checks when checksum tools exist; this documentation mismatch is benign but worth noting. 3) The skill will create files in ~/.local/bin and ~/.config/bdpan and may run background downloads (nohup) for large files — be comfortable with those side effects. 4) The skill explicitly forbids reading or printing the config file (which contains tokens); nevertheless, avoid pasting tokens into chat and run the provided login.sh interactively so sensitive codes are entered directly. If you want higher assurance, inspect scripts locally before running install.sh and run the installer in a sandbox or VM first.Like a lobster shell, security has layers — review code before you run it.
latestvk975yd7m9tab2gwhktmq0tjd5184y2va
License
MIT-0
Free to use, modify, and redistribute. No attribution required.