Skill flagged — suspicious patterns detected
ClawHub Security flagged this skill as suspicious. Review the scan results before using.
飞牛论坛签到
v1.0.2飞牛论坛(club.fnnas.com)自动签到。触发场景:(1) 用户要求"飞牛签到"、"飞牛论坛签到"、"fnclub签到";(2) 设置定时飞牛论坛签到任务;(3) 查询飞牛论坛签到状态。
⭐ 2· 318·0 current·0 all-time
MIT-0
Download zip
LicenseMIT-0 · Free to use, modify, and redistribute. No attribution required.
Security Scan
OpenClaw
Benign
high confidencePurpose & Capability
The skill's name/description (fnclub sign-in) aligns with the code and instructions, which perform HTTP login and sign-in on club.fnnas.com and use Baidu OCR for captchas. However, the registry metadata shown earlier lists 'Required env vars: none' while SKILL.md and scripts/package.json declare four required environment variables (FNCLUB_USERNAME, FNCLUB_PASSWORD, BAIDU_OCR_API_KEY, BAIDU_OCR_SECRET_KEY). That metadata mismatch is likely a packaging oversight but should be fixed/confirmed.
Instruction Scope
SKILL.md instructs only to provide forum credentials and Baidu OCR credentials, run npm install in scripts/, and run the Node script or schedule it via OpenClaw cron. The runtime instructions and code operate on the target forum and Baidu OCR service only; they do not request unrelated system files or network endpoints beyond club.fnnas.com and Baidu's OCR API.
Install Mechanism
This is instruction + included Node.js script (no platform install spec). The install step is 'cd scripts && npm install' which pulls dependencies from the public npm registry (axios, cheerio, tough-cookie). Those are common libraries and expected for this task, but npm installs execute network downloads and write node_modules to disk — standard but worth noting.
Credentials
Required environment variables are exactly the forum username/password and Baidu OCR API key/secret — all justified by the code. These are high-sensitivity secrets (password + API secret). The skill provides an alternative config file path; both methods persist secrets on disk unless you only set them in ephemeral process env. Be aware of where you store them.
Persistence & Privilege
The skill does not request elevated platform privileges and 'always' is false. However, it persists session cookies and a cached Baidu access token to disk (scripts/cookies.json, scripts/token_cache.json by default) and SKILL.md suggests storing env vars in openclaw.json via openclaw config commands. That means secrets and session tokens will be stored on disk; check where openclaw.json lives and secure file permissions.
Assessment
This skill appears to do what it says: log into club.fnnas.com, handle captchas via Baidu OCR, and save cookies/tokens for repeated sign-ins. Before installing: (1) confirm the registry metadata vs SKILL.md discrepancy (the skill does require 4 env vars); (2) prefer creating a dedicated/low-privilege forum account (not your primary) because your forum password will be stored/used; (3) if you use 'openclaw config set' the secrets are saved to openclaw.json — verify that file's location and protect its filesystem permissions; (4) review and restrict access to scripts/config.json, scripts/cookies.json, and scripts/token_cache.json (they contain credentials/session tokens); (5) review and run npm install in an environment you control (node_modules are fetched from npm); (6) if you are uncomfortable storing your real password, consider whether the forum supports API tokens or use a disposable account; and (7) if you want extra assurance, audit the full script file (scripts/fnclub_signer.js) locally — no external exfiltration endpoints were found apart from the forum and Baidu OCR API.scripts/fnclub_signer.js:16
Environment variable access combined with network send.
scripts/fnclub_signer.js:21
File read combined with network send (possible exfiltration).
Patterns worth reviewing
These patterns may indicate risky behavior. Check the VirusTotal and OpenClaw results above for context-aware analysis before installing.Like a lobster shell, security has layers — review code before you run it.
latestvk973a58x8jbjvahkwd4t41gm8d82vq7g
License
MIT-0
Free to use, modify, and redistribute. No attribution required.