Skillv1.0.1

ClawScan security

wechat-mick · ClawHub's context-aware review of the artifact, metadata, and declared behavior.

BenignMar 12, 2026, 6:06 PM

Verdict: benign
Confidence: high
Model: gpt-5-mini
Summary: This skill's code and instructions match its stated purpose (fetching and summarizing WeChat public-article pages); it requires no secrets or special installs and does not contain obvious exfiltration or hidden endpoints.
Guidance: This skill appears coherent and implements its stated purpose. Before installing, note: - The skill will run a bundled Python script as a fallback which issues an HTTP GET to the URL you provide; ensure you only ask it to fetch links you trust. The script does not validate hostnames and could fetch any reachable endpoint if given a different URL. - The environment running the skill must have Python and the 'requests' library available, otherwise the script fallback will fail. - No credentials or secrets are requested by the skill. If you need to be extra cautious, review the included fetch_article.py file yourself; it contains straightforward HTML extraction logic and no obfuscated or remote-control behavior.

Purpose & Capability: okThe name/description target mp.weixin.qq.com articles and both SKILL.md and scripts/fetch_article.py implement logic to fetch title/author/content from WeChat article pages — the requested behavior is appropriate for the stated purpose.
Instruction Scope: noteSKILL.md restricts use to WeChat article links and prefers WebFetch, with a fallback to running the included Python script. The fallback script issues an HTTP GET to the provided URL and prints extracted text. Note: the script will fetch whatever URL it is given (it does not validate hostnames), so if invoked with non-wechat URLs it will make outbound requests to those addresses.
Install Mechanism: okNo install spec — instruction-only with a small included Python script. No downloads from external installers or archives. The script depends on the 'requests' Python package, but nothing is installed by the skill itself.
Credentials: okThe skill requests no environment variables, credentials, or config paths. Its runtime behavior (HTTP GET of the user-provided link) is proportionate to summarizing an article.
Persistence & Privilege: okalways is false and the skill does not request persistent or elevated platform privileges or modify other skills. It runs only when invoked.