Model Pricing Sync
Security checks across malware telemetry and agentic risk
Overview
The skill matches its pricing-sync purpose, but it can use a local Lark/Feishu identity to create, overwrite, and delete spreadsheet tabs without clearly declaring that account-level access.
Install only if you are comfortable giving the skill access to a configured Lark/Feishu CLI account. Before running push, verify the spreadsheet destination, back up any important tabs, and expect the managed sheets to be deleted and recreated. Review the dependency installation steps and keep sheet_state.json protected.
VirusTotal
66/66 vendors flagged this skill as clean.
Risk analysis
Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.
A push can remove existing spreadsheet tabs with the managed titles and replace their contents, which may overwrite work if the target spreadsheet is wrong or reused.
The push workflow deletes existing managed sheets and recreates them in the Lark spreadsheet; SKILL.md only says to run push and does not clearly call out this destructive replacement behavior or require confirmation.
if old_id:
self.batch_update_sheets(spreadsheet_token, [{"deleteSheet": {"sheetId": old_id}}])Before pushing, show the spreadsheet URL/token and exact sheets that will be deleted/recreated, require user confirmation, and document backup or rollback steps.
The skill may act with the permissions of the locally configured Lark/Feishu account, including creating spreadsheets and modifying sheet contents.
The skill calls Lark APIs through a local CLI identity, but the registry metadata declares no primary credential or required environment/config path.
args = ["api", method.upper(), path, "--as", self.identity]
Declare the Lark/Feishu credential requirement, document the required account permissions, and let the user choose or confirm the identity before any push.
Some sites may treat this as bot-evasion behavior, even though the code appears to collect public pricing pages and separately detects blocked/CAPTCHA pages.
The Playwright collector masks automation indicators while scraping pricing pages. This is related to collection, but it is not described in SKILL.md.
STEALTH_USER_AGENT = "Mozilla/5.0 ... Chrome/135.0.0.0 Safari/537.36"
Object.defineProperty(navigator, 'webdriver', {get: () => undefined});Disclose the browser automation and stealth settings, and advise users to respect each source site's access rules.
Users may install newer or different dependency versions than the author tested, and the global Lark CLI becomes part of the trusted execution path.
The dependency and global CLI installation are purpose-aligned, but versions are not pinned and the registry lists no required binaries.
playwright>=1.40.0 # 3. npm install -g @larksuiteoapi/cli (for Feishu/Lark integration)
Pin tested dependency versions, declare the Lark CLI as a required binary, and provide reproducible installation instructions.
Future runs will reuse the saved target, so a stale or modified sheet_state.json could cause data to be pushed to an unintended spreadsheet.
The skill persists the target spreadsheet token, URL, identity, and managed sheet IDs for reuse on later pushes.
"spreadsheet_token": spreadsheet_token, "url": url, "identity": identity, ... save_sheet_state(new_state, sheet_state_file)
Protect or review sheet_state.json, and have the skill display the saved destination before each push.