ClawHub
Skill flagged — suspicious patterns detected

ClawHub Security flagged this skill as suspicious. Review the scan results before using.

Baoyu Post To Wechat

v1.103.2

Posts content to WeChat Official Account (微信公众号) via API or Chrome CDP. Supports article posting (文章) with HTML, markdown, or plain text input, and image-tex...

0· 2k·58 current·58 all-time
byJim Liu 宝玉@jimliu

Install

OpenClaw Prompt Flow

Install with OpenClaw

Best for remote or guided setup. Copy the exact prompt, then paste it into OpenClaw for jimliu/baoyu-post-to-wechat.

Previewing Install & Setup.
Prompt PreviewInstall & Setup
Install the skill "Baoyu Post To Wechat" (jimliu/baoyu-post-to-wechat) from ClawHub.
Skill page: https://clawhub.ai/jimliu/baoyu-post-to-wechat
Keep the work scoped to this skill only.
After install, inspect the skill metadata and help me finish setup.
Use only the metadata you can verify from ClawHub; do not invent missing requirements.
Ask before making any broader environment changes.

Command Line

CLI Commands

Use the direct CLI path if you want to install manually and keep every step visible.

OpenClaw CLI

Bare skill slug

openclaw skills install baoyu-post-to-wechat

ClawHub CLI

Package manager switcher

npx clawhub@latest install baoyu-post-to-wechat
Security Scan
Capability signals
Requires OAuth tokenRequires sensitive credentials
These labels describe what authority the skill may exercise. They are separate from suspicious or malicious moderation verdicts.
VirusTotalVirusTotal
Benign
View report →
OpenClawOpenClaw
Suspicious
high confidence
!
Purpose & Capability
Name/description match the included scripts: the bundle contains browser CDP scripts, markdown→HTML conversion, clipboard helpers and an API poster. However the registry metadata declares no required environment variables or config paths and no primary credential while the runtime clearly expects WeChat API credentials (WECHAT_APP_ID / WECHAT_APP_SECRET), per-account prefixed variants, and Chrome profile paths. That mismatch is incoherent: a posting skill legitimately needs those credentials and config paths but the metadata omits them.
Instruction Scope
SKILL.md and the reference docs instruct the agent to run local scripts (via bun/npx), open/launch Chrome, simulate keystrokes/paste, read and write EXTEND.md and .baoyu-skills/.env, and read files the user points to (markdown, images). Those actions are within the declared functional scope (posting via API or browser), but they include operations with broad side effects (creating config files in the user home, manipulating Chrome profiles, requiring Accessibility/clipboard privileges) that callers should be aware of.
Install Mechanism
There is no external download URL or installer; this is an instruction-first skill that runs included TypeScript scripts via bun/npx. That lowers supply-chain risk compared to downloading remote archives. The bundle includes a bun.lock and many dependencies, which is expected given image processing and CDP interactions.
!
Credentials
Registry metadata lists no required env vars, but the runtime and docs expect/use multiple env vars and config files: WECHAT_APP_ID/WECHAT_APP_SECRET (and per-account prefixed variants like WECHAT_{ALIAS}_APP_ID), WECHAT_BROWSER_CHROME_PATH, BAOYU_CHROME_PROFILE_DIR / chrome_profile_path in EXTEND.md, and .baoyu-skills/.env in cwd or home. The skill also writes credentials to ~/.baoyu-skills/.env or project .baoyu-skills/.env during guided setup. Declaring none of these in metadata is a mismatch and risks surprise credential storage/exposure.
Persistence & Privilege
always:false (no forced inclusion) and autonomous invocation is allowed (default). The skill will create/modify files under .baoyu-skills and may create isolated Chrome profile dirs; it does not request elevated OS privileges beyond normal clipboard/Accessibility usage. This level of persistence (writing user config and profiles) is typical for such tooling but is notable and should be accepted explicitly by users.
What to consider before installing
This skill appears to implement WeChat posting workflows (API and browser automation) and includes all the tooling to do so, but the registry metadata understates what it will access and store. Things to consider before installing or using it: - Credentials: The scripts expect WECHAT_APP_ID and WECHAT_APP_SECRET (and optional per-account prefixed env vars). The guided setup will ask for these and append them in plain text to .baoyu-skills/.env (project or ~/.baoyu-skills/.env). Only supply AppID/Secret you trust to be stored unencrypted on disk, and prefer per-account keys rather than a shared high‑privilege key. - Config & files: The skill will read/write EXTEND.md and .baoyu-skills/.env in your project or home directory and may create Chrome profile directories. If you want isolation, review/choose the profile path before running and do not reuse your primary Chrome profile. - OS interactions: The browser automation simulates keystrokes and pastes images from the clipboard, and the permission checker uses system tools (osascript/swift/xdotool/wl-copy/powershell). You will likely need to grant Accessibility/clipboard permissions on macOS and install helper tools on Linux. The scripts may invoke swift/powershell or system clipboard utilities—confirm those commands are acceptable in your environment. - Metadata mismatch: The package metadata does not declare the env vars and config paths the code uses. That is an incoherence — treat the runtime docs as the source of truth and inspect the code (especially scripts/wechat-api.ts) for network endpoints and behavior before use. - Safety steps: Run scripts in a safe/test environment first, review the code for wechat-api.ts (to confirm it calls the official WeChat endpoints), use temporary or limited-scope WeChat credentials, and run the provided check-permissions script to see what the skill will require. If you have any doubt, do not store highly sensitive credentials in the unencrypted .baoyu-skills/.env files and consider running this tool inside an isolated account or VM.
scripts/cdp.ts:51
Shell command execution detected (child_process).
scripts/check-permissions.ts:69
Shell command execution detected (child_process).
scripts/copy-to-clipboard.ts:59
Shell command execution detected (child_process).
scripts/paste-from-clipboard.ts:54
Shell command execution detected (child_process).
scripts/wechat-agent-browser.ts:28
Shell command execution detected (child_process).
scripts/wechat-api.ts:448
Shell command execution detected (child_process).
scripts/wechat-article.ts:96
Shell command execution detected (child_process).
!
scripts/wechat-api.ts:124
File read combined with network send (possible exfiltration).
Patterns worth reviewing
These patterns may indicate risky behavior. Check the VirusTotal and OpenClaw results above for context-aware analysis before installing.

Like a lobster shell, security has layers — review code before you run it.

Runtime requirements

Any binbun, npx
latestvk976x3f6x5tq4gawsc5aj587bx859mz0
2kdownloads
0stars
13versions
Updated 9h ago
v1.103.2
MIT-0
Jim Liu 宝玉@jimliu
latest
Download

Post to WeChat Official Account

User Input Tools

When this skill prompts the user, follow this tool-selection rule (priority order):

  1. Prefer built-in user-input tools exposed by the current agent runtime — e.g., AskUserQuestion, request_user_input, clarify, ask_user, or any equivalent.
  2. Fallback: if no such tool exists, emit a numbered plain-text message and ask the user to reply with the chosen number/answer for each question.
  3. Batching: if the tool supports multiple questions per call, combine all applicable questions into a single call; if only single-question, ask them one at a time in priority order.

Concrete AskUserQuestion references below are examples — substitute the local equivalent in other runtimes.

Language

Respond in the user's language. If they write in Chinese, reply in Chinese; if English, English. Keep technical tokens (paths, flags, field names) in English.

Script Directory

{baseDir} = this SKILL.md's directory. Resolve ${BUN_X}: prefer bun; else npx -y bun; else suggest brew install oven-sh/bun/bun.

ScriptPurpose
scripts/wechat-browser.tsImage-text posts (图文)
scripts/wechat-article.tsArticle posting via browser (文章)
scripts/wechat-api.tsArticle posting via API (文章)
scripts/md-to-wechat.tsMarkdown → WeChat-ready HTML with image placeholders
scripts/check-permissions.tsVerify environment & permissions

Preferences (EXTEND.md)

Check these paths in order; first hit wins:

PathScope
.baoyu-skills/baoyu-post-to-wechat/EXTEND.mdProject
${XDG_CONFIG_HOME:-$HOME/.config}/baoyu-skills/baoyu-post-to-wechat/EXTEND.mdXDG
$HOME/.baoyu-skills/baoyu-post-to-wechat/EXTEND.mdUser home

Found → read, parse, apply. Not found → run first-time setup (references/config/first-time-setup.md) before anything else.

Minimum keys (case-insensitive, accept 1/0 or true/false):

KeyDefaultMapping
default_authoremptyFallback for author when CLI/frontmatter not provided
need_open_comment1articles[].need_open_comment in draft/add
only_fans_can_comment0articles[].only_fans_can_comment in draft/add

Recommended EXTEND.md:

default_theme: default
default_color: blue
default_publish_method: api
default_author: 宝玉
need_open_comment: 1
only_fans_can_comment: 0
chrome_profile_path: /path/to/chrome/profile

Theme options: default, grace, simple, modern. Color presets: blue, green, vermilion, yellow, purple, sky, rose, olive, black, gray, pink, red, orange (or hex).

Value priority: CLI args → frontmatter → EXTEND.md (account-level → global) → skill defaults.

Multi-Account Support

EXTEND.md supports an accounts: block for managing multiple Official Accounts. With 2+ entries, the workflow inserts a Step 0.5 to prompt for account selection (or auto-selects based on default: true or --account <alias>).

Full details — compatibility rules, per-account keys, credential resolution, per-account Chrome profiles, CLI usage — in references/multi-account.md.

Pre-flight Check (Optional)

Before first use, suggest the environment check (user can skip):

${BUN_X} {baseDir}/scripts/check-permissions.ts

Checks: Chrome, profile isolation, Bun, Accessibility, clipboard, paste keystroke, API credentials, Chrome conflicts.

Check failsFix
ChromeInstall Chrome or set WECHAT_BROWSER_CHROME_PATH
Profile dirShared profile at baoyu-skills/chrome-profile
Bun runtimebrew install oven-sh/bun/bun or npm install -g bun
Accessibility (macOS)System Settings → Privacy & Security → Accessibility → enable terminal app
Clipboard copyEnsure Swift/AppKit (macOS: xcode-select --install)
Paste keystroke (Linux)Install xdotool (X11) or ydotool (Wayland)
API credentialsFollow guided setup in Step 2, or set in .baoyu-skills/.env

Image-Text Posting (图文)

Short posts with multiple images (up to 9):

${BUN_X} {baseDir}/scripts/wechat-browser.ts --markdown article.md --images ./images/
${BUN_X} {baseDir}/scripts/wechat-browser.ts --title "标题" --content "内容" --image img.png --submit

Details: references/image-text-posting.md.

Article Posting Workflow (文章)

- [ ] Step 0: Load preferences (EXTEND.md)
- [ ] Step 0.5: Resolve account (multi-account only — see references/multi-account.md)
- [ ] Step 1: Determine input type
- [ ] Step 2: Select method and configure credentials
- [ ] Step 3: Resolve theme/color and validate metadata
- [ ] Step 4: Publish to WeChat
- [ ] Step 5: Report completion

Step 0: Load Preferences

Check and load EXTEND.md (see "Preferences" above). If not found, complete first-time setup before any other questions. Resolve and cache for later steps: default_theme, default_color, default_author, need_open_comment, only_fans_can_comment.

Step 1: Determine Input Type

InputDetectionNext
HTML filePath ends .html, file existsSkip to Step 3
Markdown filePath ends .md, file existsStep 2
Plain textNot a file path, or file doesn't existSave to markdown, then Step 2

Plain-text handling:

  1. Generate slug (first 2-4 meaningful words, kebab-case; translate Chinese to English for the slug).
  2. Save to post-to-wechat/YYYY-MM-DD/<slug>.md (create directory if needed).
  3. Continue as a markdown file.

Step 2: Select Publishing Method and Configure

Ask method unless specified in EXTEND.md or CLI:

MethodSpeedRequires
api (Recommended)FastAPI credentials
browserSlowChrome + logged-in session

API selected + missing credentials → run guided setup per references/api-setup.md (writes to .baoyu-skills/.env).

Step 3: Resolve Theme/Color and Validate Metadata

  1. Theme: CLI --theme → EXTEND.md default_themedefault (first match wins; do NOT ask if resolved).
  2. Color: CLI --color → EXTEND.md default_color → omit (theme default applies).
  3. Validate metadata (frontmatter for markdown, meta tags for HTML):
FieldMissing →
TitleAsk, or press Enter to auto-generate from content
SummaryFrontmatter descriptionsummary → ask or auto-generate
AuthorCLI --author → frontmatter author → EXTEND.md default_author

Auto-generation: title = first H1/H2 or first sentence; summary = first paragraph, truncated to 120 chars.

  1. Cover image (required for API article_type=news): CLI --cover → frontmatter (coverImage / featureImage / cover / image) → imgs/cover.png → first inline image → stop and request one if still missing.

Step 4: Publish

Important — never pre-convert markdown to HTML. Publishing scripts handle the conversion internally and the two methods render images differently: API renders <img> tags for upload, browser uses placeholders for paste-and-replace. Passing a pre-converted HTML breaks one or the other.

Markdown citation default: for markdown input, ordinary external links are converted to bottom citations by default. Use --no-cite only if the user explicitly wants to keep inline links. Existing HTML input is left as-is.

API method (accepts .md or .html):

${BUN_X} {baseDir}/scripts/wechat-api.ts <file> --theme <theme> [--color <color>] [--title <title>] [--summary <summary>] [--author <author>] [--cover <cover_path>] [--no-cite]

Always pass --theme even if it's default. Only pass --color when explicitly set by the user or EXTEND.md.

draft/add payload rules:

  • Endpoint: POST https://api.weixin.qq.com/cgi-bin/draft/add?access_token=ACCESS_TOKEN
  • article_type: news (default) or newspic
  • For news, include thumb_media_id (cover required)
  • Always include need_open_comment (default 1) and only_fans_can_comment (default 0) in the request body, even if the CLI doesn't expose them

Browser method (accepts --markdown or --html):

${BUN_X} {baseDir}/scripts/wechat-article.ts --markdown <markdown_file> --theme <theme> [--color <color>] [--no-cite]
${BUN_X} {baseDir}/scripts/wechat-article.ts --html <html_file>

Step 5: Completion Report

WeChat Publishing Complete!

Input: [type] - [path]
Method: [API | Browser]
Theme: [theme] [color if set]

Article:
• Title: [title]
• Summary: [summary]
• Images: [N] inline
• Comments: [open/closed], [fans-only/all]    ← API method only

Result:
✓ Draft saved to WeChat Official Account
• media_id: [media_id]                         ← API method only

Next Steps (API):
→ Manage drafts: https://mp.weixin.qq.com (登录后进入「内容管理」→「草稿箱」)

Files created:
[• post-to-wechat/YYYY-MM-DD/slug.md (if plain text input)]
[• slug.html (converted)]

Feature Comparison

FeatureImage-TextArticle (API)Article (Browser)
Plain text input
HTML input
Markdown inputTitle/content
Multiple images✓ (up to 9)✓ (inline)✓ (inline)
Themes
Auto-generate metadata
Default cover fallback (imgs/cover.png)
Comment control
Requires Chrome
Requires API credentials
SpeedMediumFastSlow

Troubleshooting

IssueFix
Missing API credentialsFollow guided setup in Step 2
Access token errorVerify credentials valid and not expired
Not logged in (browser)First run opens browser — scan QR to log in
Chrome not foundSet WECHAT_BROWSER_CHROME_PATH
Title/summary missingUse auto-generation or provide manually
No cover imageAdd frontmatter cover or place imgs/cover.png in article directory
Wrong comment defaultsCheck need_open_comment / only_fans_can_comment in EXTEND.md
Paste failsCheck system clipboard permissions

References

FileContent
references/image-text-posting.mdImage-text parameters, auto-compression
references/article-posting.mdArticle themes, image handling
references/multi-account.mdMulti-account compatibility, credentials, Chrome profiles, CLI
references/api-setup.mdGuided credential setup
references/config/first-time-setup.mdFirst-time EXTEND.md setup

Extension Support

Custom configurations via EXTEND.md. See "Preferences" for paths and supported options.

Comments

Loading comments...