Skill flagged — suspicious patterns detected
ClawHub Security flagged this skill as suspicious. Review the scan results before using.
悟空邀请码监控
v2.1.0钉钉悟空邀请码监控,零 token 消耗。自动监控邀请码图片版本变化,支持本地 Tesseract OCR 识别和心跳推送通知。
⭐ 1· 103·0 current·0 all-time
MIT-0
Download zip
LicenseMIT-0 · Free to use, modify, and redistribute. No attribution required.
Security Scan
OpenClaw
Benign
high confidencePurpose & Capability
Name/description (monitor Wukong invite image versions, local OCR, heartbeat notifications) matches the code: scripts check CDN image URLs, download changed images, run local Tesseract OCR, write status/notify files, and provide cron setup. No unrelated credentials, cloud SDKs, or unexpected binaries are required.
Instruction Scope
Runtime instructions (SKILL.md) tell the agent to run the included scripts and setup cron — which is exactly what the code does. One mismatch: the docs/HEARTBEAT.md say "自动通过飞书推送通知" (auto push to Feishu), but heartbeat-check.py and notify-watcher.py only print/emit a JSON message and write/consume /tmp notification files — they do not contain any code to call Feishu or other external push APIs or require Feishu credentials. That means push integration is expected to be provided by the caller (or additional custom code), and the documentation is mildly misleading.
Install Mechanism
This is an instruction-only skill with local scripts; there is no automated remote install spec. The included install-dependencies.sh only suggests (and can run, after confirmation) package manager commands to install Tesseract and its language pack; it does not download arbitrary code from unknown hosts. No archives or external code downloads besides fetching the monitored images at runtime.
Credentials
The skill declares no required env vars or credentials and the code does not read environment secrets. It accesses and writes only local files (/tmp/* and a workspace path computed relative to the scripts directory). The lack of credential requests is appropriate — note that if you want actual Feishu push notifications, you'll need to add credentials and integration yourself.
Persistence & Privilege
The setup-cron.sh will add a cron job to the user's crontab to run checks periodically; this is expected for a monitoring skill but is a system change (modifies crontab). always:false and the skill does not try to modify other skills or system-wide agent settings.
Assessment
This skill appears to do what it says: polling an Alibaba CDN URL for image-version changes, downloading changed images, running local Tesseract OCR if available, and writing notifications to /tmp and to the workspace. Before installing/running:
- Review and understand that setup-cron.sh will modify your user crontab (it adds a periodic job). Remove the cron entry to stop monitoring.
- The scripts do not actually send Feishu (or other) notifications — heartbeat-check.py prints a JSON message and writes state files; if you want push notifications you must implement the push integration and supply any required tokens/credentials yourself.
- install-dependencies.sh may run sudo package-manager commands to install Tesseract language packs; run it only if you trust and have reviewed it.
- The skill downloads images from a public Alibaba CDN URL template; it stores images under your workspace and writes logs/state files to /tmp. Ensure that saving these files is acceptable for your environment and that the computed workspace path is correct.
- No credentials are requested by the skill, and there is no hidden network exfiltration in the provided files. If you plan to extend the skill to auto-push messages, follow least-privilege practices for storing API tokens (use appropriate environment variables or a secrets manager) and review any added network code.Like a lobster shell, security has layers — review code before you run it.
latestvk97eeeap79vmfwv4px4kvg8enh83btgd
License
MIT-0
Free to use, modify, and redistribute. No attribution required.