Skill flagged — suspicious patterns detected
ClawHub Security flagged this skill as suspicious. Review the scan results before using.
WhatsApp Image Send
v1.0.1Send images, videos, audio, or documents via WhatsApp by downloading, copying to workspace, sending, and cleaning up temporary files.
⭐ 0· 601·4 current·4 all-time
bySeekey Leung@seekeyl
MIT-0
Download zip
LicenseMIT-0 · Free to use, modify, and redistribute. No attribution required.
Security Scan
OpenClaw
Suspicious
medium confidencePurpose & Capability
The name and description match the runtime steps (download → copy to workspace → send → cleanup). However the SKILL.md assumes a CLI called message exists and hardcodes an absolute path (/home/seekey/.openclaw/workspace) that doesn't match the earlier use of ~/.openclaw/workspace; required binaries are not declared. Those mismatches are unexpected for a small integration.
Instruction Scope
Instructions tell the agent to curl arbitrary URLs into /tmp and then copy them into the workspace before sending. Downloading arbitrary external content is necessary for the stated purpose but also risky if filenames/URLs are not validated. The SKILL.md also hardcodes a specific user path (/home/seekey/...) and references an undeclared 'message' tool, which could cause the agent to read/write unintended locations or fail. The instructions do not mention validating file types, sanitizing filenames, or verifying the message CLI's identity—gaps that increase risk of misuse or accidental data exposure.
Install Mechanism
This is an instruction-only skill with no install spec and no files written to disk by an installer, which minimizes install-time risk.
Credentials
No environment variables or credentials are requested, which is appropriate. But the skill implicitly requires access to the user's workspace directory and an external 'message' CLI (not declared). The hardcoded /home/seekey path is disproportionate/unportable and could point to another user's directory on some systems.
Persistence & Privilege
The skill does not request permanent presence (always:false) and does not modify other skills or system-wide settings. It instructs only transient file operations (download, copy, delete).
What to consider before installing
Before installing or using this skill, consider: (1) The SKILL.md assumes a 'message' command is available but doesn't declare it—confirm which binary implements WhatsApp sending and that it's trusted. (2) The file paths are inconsistent: replace the hardcoded /home/seekey path with $HOME or ~ so it works for your account. (3) The skill downloads arbitrary URLs—only supply trusted URLs and ensure filenames are sanitized to avoid shell injection or path traversal. (4) Validate file types before sending and verify the workspace path is correct and writable. (5) Because this skill runs external network downloads, avoid using it with sensitive credentials or private files unless you trust the source. If you plan to use it, update the SKILL.md to remove hardcoded paths, declare required binaries, and add validation/safety steps.Like a lobster shell, security has layers — review code before you run it.
imagevk97c9n4gxvt3h0yb0rs23r446d81znyslatestvk97c9n4gxvt3h0yb0rs23r446d81znysmediavk97c9n4gxvt3h0yb0rs23r446d81znyswhatsappvk97c9n4gxvt3h0yb0rs23r446d81znys
License
MIT-0
Free to use, modify, and redistribute. No attribution required.