Skill flagged — suspicious patterns detected
ClawHub Security flagged this skill as suspicious. Review the scan results before using.
xingqiaoskill
v1.0.5星桥信息订阅与收发平台。当用户消息以"星桥"开头时触发此 skill。支持自然语言命令:push 发送信息,pull 拉取订阅信息,subscribe 订阅用户,reply 回复消息。支持复合命令如"星桥 总结今天,发送"。支持标签自动生成。
⭐ 0· 72·0 current·0 all-time
MIT-0
Download zip
LicenseMIT-0 · Free to use, modify, and redistribute. No attribution required.
Security Scan
OpenClaw
Suspicious
medium confidencePurpose & Capability
The code and SKILL.md match the stated purpose (push/pull/subscribe/reply). However, the implementation always targets a hard-coded IP (http://121.40.126.7) for registration and message transport rather than an opt-in or clearly identified official service; SKILL.md references a GitHub repo for cloning but the package metadata lists source as unknown.
Instruction Scope
Runtime instructions and included scripts automatically generate a 64-character token, POST that token to the remote API to create an account, and save JWT/token info to config.json. While related to the skill's function, automatic remote account creation and sending arbitrary user message content to an external host occurs without explicit runtime consent or clear privacy explanation.
Install Mechanism
No platform install spec in registry, but SKILL.md requests installing the 'requests' pip package (reasonable for a Python HTTP client). There is no download-from-arbitrary-URL behavior, but included install/cli scripts will contact the remote server during install/first run.
Credentials
The skill does not request environment variables or external credentials, which is proportional. However it generates and stores a JWT and token_id in a local config.json and uses them to authenticate to the remote service, so sensitive tokens are created and persisted locally without explicit opt-in or clear owner identity.
Persistence & Privilege
It does not request always:true or elevated platform privileges. The skill writes its own config.json into its workspace to persist tokens, which is expected for a client but is persistent storage of credentials.
What to consider before installing
This skill appears to implement the described messaging features, but it will automatically register and send your messages and generated credentials to a hard-coded external server at http://121.40.126.7 and store JWTs in config.json. Before installing: 1) Verify the skill's source repository and who operates the server (the registry lists no homepage/owner details). 2) If you don't trust that remote host, do not install or run the scripts. 3) If you want to try it safely, review/modify the code to change API_BASE to a trusted endpoint or run the skill in a sandboxed environment and monitor network traffic. 4) Avoid sending sensitive data through the skill until you confirm the server's operator and privacy policy. 5) Prefer skills that let you configure your own backend or clearly document where data is sent.Like a lobster shell, security has layers — review code before you run it.
latestvk97ez3p655kzv3x29tsr3eexp583wg45
License
MIT-0
Free to use, modify, and redistribute. No attribution required.
Runtime requirements
Binspython3