ClawHub
Skill flagged — suspicious patterns detected

ClawHub Security flagged this skill as suspicious. Review the scan results before using.

Feishu Video Editor

v1.0.0

基于飞书平台,支持视频下载、语音识别、静音检测、智能裁剪、字幕生成及自动上传功能的视频编辑工具。

0· 87·0 current·1 all-time
by@rfdiosuao
MIT-0
Download zip
LicenseMIT-0 · Free to use, modify, and redistribute. No attribution required.
Security Scan
VirusTotalVirusTotal
Suspicious
View report →
OpenClawOpenClaw
Suspicious
medium confidence
!
Purpose & Capability
SKILL.md and README claim full Feishu integration (download from Feishu cloud, upload results). However the repository and runtime code do not declare or use Feishu API credentials, do not read environment variables for Feishu, and no HTTP calls / Feishu SDK usage are present in the visible TypeScript or Python code. That mismatch (cloud integration stated but not implemented or not requesting required credentials) is incoherent.
!
Instruction Scope
Runtime instructions in SKILL.md describe downloading from and uploading to Feishu, but src/index.ts and the visible portion of src/video_processor.py operate on local file paths only and expect a local videoPath. The instructions also instruct installing pip deps (openai-whisper) and ffmpeg which is consistent with local processing, but the Feishu-specific parts are not implemented in code or not tied to declared credentials. The SKILL.md also reasonably informs that video files are downloaded to local disk and cleaned up afterwards — that is expected, but it means local files will be processed and transiently written to /tmp.
Install Mechanism
There is no install spec in the skill bundle (instruction-only installer), but code files are included. Dependencies are installed via requirements.txt (openai-whisper, librosa, etc.) which will download Python packages and (when using Whisper) may trigger large model downloads at runtime. This is expected for the stated features but is heavier than a tiny utility and implies large network downloads and storage needs.
!
Credentials
The skill requests no environment variables or credentials despite advertising Feishu cloud upload/download; a Feishu-integrated tool would normally require app credentials/tokens. Separately, src/index.ts constructs a shell command string `python3 ${args.join(' ')}` and runs it through exec — if any argument (e.g., videoPath) is attacker-controlled or contains shell metacharacters this enables command injection. The Python side runs ffmpeg via subprocess (usually as lists, which is safer).
Persistence & Privilege
The skill does not request elevated persistence: always is false, there is no indication it will forcibly persist or modify other skills' configurations. It writes temporary config files to /tmp for each run (predictable but standard for a local tool).
What to consider before installing
What to consider before installing or running this skill: - Feishu integration mismatch: The documentation promises downloading from and uploading to Feishu cloud, but the code does not show any Feishu API usage or request Feishu credentials. Expect that upload/download to Feishu will not work out-of-the-box. Ask the author for how Feishu auth should be provided (e.g., APP_ID/APP_SECRET or access token) and request a code path that uses those credentials. - Local execution & data exposure: The skill downloads/reads video files locally and writes temporary files (e.g., /tmp/*.json, temp audio/video clips). If you run this on sensitive videos, they will be processed locally and may be stored temporarily — run in an isolated environment if needed. - Model and network usage: Installing requirements installs openai-whisper and friends; loading Whisper will likely download model weights from the network and consume a lot of disk and bandwidth. Plan for this and run inside a controlled environment. - Shell injection risk: src/index.ts builds and execs a shell command by concatenating unescaped arguments. If a video path or other argument can be influenced by an untrusted user, this could allow command injection. Before using, patch runPythonScript to use execFile/spawn with an argument array (no shell interpolation) or properly sanitize/escape inputs. - Code completeness: The Python file posted is truncated but mostly does local processing. Review the full video_processor.py for any network calls, hidden endpoints, or unexpected behavior. Confirm there is no hard-coded upload endpoint or credentials in other parts of the repository. - Mitigations if you want to use it: run inside a dedicated unprivileged VM/container; review and fix the exec invocation to avoid shell interpolation; require and document Feishu credentials and implement/verify Feishu upload/download flows; run pip installs inside a virtualenv; test with non-sensitive sample videos first. Given the inconsistencies and the command-execution risk, treat this skill as suspicious until the Feishu integration and safe execution model are clarified and the shell-invocation issue is corrected.

Like a lobster shell, security has layers — review code before you run it.

latestvk978t9rj03tq7rd1qd1gdrr5gd83b359

License

MIT-0
Free to use, modify, and redistribute. No attribution required.
Termshttps://spdx.org/licenses/MIT-0.html

Comments