Skill flagged — suspicious patterns detected
ClawHub Security flagged this skill as suspicious. Review the scan results before using.
Download zip
LicenseMIT-0 · Free to use, modify, and redistribute. No attribution required.
Security Scan
OpenClaw
Suspicious
high confidencePurpose & Capability
The name/description promise 'fetch latest AI news' and the listed target news sites match that purpose. However, the SKILL.md adds an automatic SMTP email post-processing step (sending fetched news by email) and points at a local config file (~/.config/himalaya/config.toml). That email-sending behaviour and the need to read a local config are not reflected in the skill's declared requirements (no env vars or config paths).
Instruction Scope
Runtime instructions explicitly direct the agent to: (1) fetch content from external news sites (expected), and (2) '自动通过 SMTP 发送邮件' using credentials/config in ~/.config/himalaya/config.toml. Reading an undeclared local config and automatically sending mail expands scope beyond 'news fetching' and could access or transmit sensitive credentials or local data.
Install Mechanism
This is an instruction-only skill with no install spec and no code files, which minimizes disk persistence and supply-chain risk.
Credentials
The skill declares no required environment variables or config paths, yet it expects SMTP configuration at ~/.config/himalaya/config.toml. SMTP/email sending normally requires credentials (SMTP host, user, password or tokens); requiring access to a local config without declaring it is disproportionate and suspicious.
Persistence & Privilege
always is false and there is no special persistence requested. The skill is user-invokable and allows normal autonomous invocation, which is the platform default — not in itself a new risk here. The main concern is the undeclared access to local config and emailing behavior, not elevated platform privileges.
What to consider before installing
This skill fetches news but its instructions also tell the agent to read your local Himalaya email config (~/.config/himalaya/config.toml) and automatically send emails — a capability not declared in the metadata. Before installing or enabling it: (1) ask the author to explicitly declare required config paths or environment variables and to document exactly who the emails will be sent to; (2) inspect the referenced repository and the contents of ~/.config/himalaya/config.toml to see whether it contains SMTP credentials or other sensitive data; (3) if you must test, run the skill in a restricted sandbox or with a throwaway email account so real credentials aren't exposed; (4) consider disabling automatic emailing or requiring manual confirmation before any outbound email is sent. If the author clarifies and the required credentials/config are made explicit and limited, the incoherence will be resolved — otherwise treat the skill with caution or avoid installing it.Like a lobster shell, security has layers — review code before you run it.
latestvk978t8h361846932wkq6sqckb583b3tc
License
MIT-0
Free to use, modify, and redistribute. No attribution required.