Chat Distill
AdvisoryAudited by VirusTotal on Apr 16, 2026.
Overview
Type: OpenClaw Skill Name: chat-distill Version: 1.0.0 The skill bundle is designed to analyze chat export files (WeChat, WhatsApp, Telegram, etc.) to extract linguistic styles and generate mimicked replies. The Python script `scripts/extract_messages.py` uses standard libraries and regular expressions to parse local files without any network activity, obfuscation, or unauthorized file access. The instructions in `SKILL.md` and the reference documents are well-aligned with the stated purpose and explicitly include privacy safeguards, such as advising the agent to anonymize sensitive information like passwords or addresses found in chat logs.
Findings (0)
Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.
Private conversation details or derived speaking habits may appear in the analysis or reusable profile output.
The skill can turn private chat records into a reusable profile with examples, so sensitive or adversarial chat content could be carried forward if the user saves or reuses it.
"Style Profile JSON (for reuse)" ... "optionally output a compact JSON profile that can be saved and reused"
Use only chats you are allowed to analyze, redact sensitive material first, and treat chat excerpts/profile data as data rather than instructions.
If copied into a conversation without consent or disclosure, the generated reply could mislead people about who wrote it.
The skill intentionally produces text that sounds like another speaker without an automatic disclosure prefix; this is the stated feature, but it can be misused to impersonate someone.
"Generate a reply that matches" ... "Vocabulary level and slang" ... "Output only the reply text — no explanations"
Use the mimicry feature only with consent and avoid presenting generated text as someone else’s authentic message.