FreshRSS Reader
PassAudited by VirusTotal on May 12, 2026.
Overview
Type: OpenClaw Skill Name: freshrss-reader Version: 1.0.0 The skill is designed to query a self-hosted FreshRSS instance. The `SKILL.md` provides clear, benign instructions for the AI agent and user. The `scripts/freshrss.sh` script uses `curl` to interact with the user-configured FreshRSS API endpoint (`FRESHRSS_URL`) for authentication and data retrieval, and `jq` for parsing JSON responses. All network activity is confined to the specified FreshRSS instance, and there is no evidence of data exfiltration to unauthorized endpoints, malicious execution, persistence mechanisms, or prompt injection attempts against the agent.
Findings (0)
Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.
Once configured, the skill can authenticate to your FreshRSS instance and read headlines, feeds, categories, and article URLs available to that account.
The skill requires FreshRSS account credentials to authenticate. This is expected for querying a private FreshRSS instance, but users should recognize that the script can access their configured reader account.
export FRESHRSS_URL="https://your-freshrss-instance.com" export FRESHRSS_USER="your-username" export FRESHRSS_API_PASSWORD="your-api-password"
Use a FreshRSS API password rather than a reused account password, prefer HTTPS for FRESHRSS_URL, and revoke the API password if you stop using the skill.
An install UI or reviewer relying only on metadata may not see that the skill needs FreshRSS credentials and local helper execution.
The registry metadata does not declare the credential/environment requirements, and the source has no homepage. The SKILL.md and script do disclose the FreshRSS variables, so this is a metadata/provenance gap rather than hidden behavior.
Source: unknown; Homepage: none; Required env vars: none; Env var declarations: none; Primary credential: none
Review the included script before use, and the publisher should declare FRESHRSS_URL, FRESHRSS_USER, FRESHRSS_API_PASSWORD, and local tool dependencies in metadata.