ClawHub
Skill flagged — suspicious patterns detected

ClawHub Security flagged this skill as suspicious. Review the scan results before using.

Support Template Multilang Sync

v1.0.0

Update multilingual customer support reply templates in markdown files, then sync the updated content to Feishu Wiki, log the change in a GitHub issue, and p...

0· 49·0 current·0 all-time
by@terrycarter1985
MIT-0
Download zip
LicenseMIT-0 · Free to use, modify, and redistribute. No attribution required.
Security Scan
VirusTotalVirusTotal
Benign
View report →
OpenClawOpenClaw
Suspicious
medium confidence
Purpose & Capability
The declared purpose (edit markdown templates, sync to Feishu, log in GitHub, package for ClawHub) aligns with the instructions and the helper script. Requesting Feishu, GitHub, and ClawHub credentials is proportionate to the stated functionality — but the registry metadata says no env vars/credentials are required, which is inconsistent and misleading.
!
Instruction Scope
SKILL.md explicitly instructs reading and modifying local markdown files and syncing them to external services (Feishu, GitHub, ClawHub). That scope is appropriate for the described task, but the instructions require access to credentials and to run packaging/publish commands when 'credentials are available' — giving an agent discretion to perform networked actions. The skill's instructions do not attempt to read unrelated system files, but the included script will read any file path passed to it, so if invoked with a malicious path it could expose other local files.
Install Mechanism
Instruction-only skill with one small helper script and no install spec; nothing is downloaded or written by an installer. Low install risk.
!
Credentials
The SKILL.md and references list several sensitive environment variables (FEISHU_ACCESS_TOKEN or FEISHU_APP_ID+FEISHU_APP_SECRET, FEISHU_WIKI_SPACE_ID, FEISHU_SUPPORT_TICKETS_NODE_ID, GITHUB_TOKEN, GITHUB_REPO, CLAWHUB_API_KEY). Those are reasonable for the declared networked operations, but the skill metadata in the registry declares no required env vars or primary credential — this mismatch is problematic because users (and automated permission reviewers) may not be warned that installing/using the skill will require or use these secrets.
Persistence & Privilege
always:false (normal). The skill does not request persistent or system-wide privileges, does not modify other skills' config, and is not auto-forced into all agents. The risk is that the agent could perform networked operations using provided credentials when invoked.
What to consider before installing
This skill appears to do what it claims (edit templates, sync to Feishu, open a GitHub issue, and optionally publish to ClawHub), but the package metadata omits the credentials it actually needs. Before installing or granting access: 1) Treat FEISHU_*, GITHUB_TOKEN, and CLAWHUB_API_KEY as sensitive; only provide least-privilege tokens (scoped, short-lived if possible). 2) Confirm the skill's source/trustworthiness since the registry 'source' and homepage are missing. 3) If you run the packaging/publish steps, run them manually rather than letting an agent do them autonomously. 4) Review and test the included script locally — it will read whatever file path you pass, so avoid passing sensitive system paths. 5) Ask the publisher to update registry metadata to list required env vars and to document exactly which endpoints and token scopes are used; absence of that information is the primary incoherence here.

Like a lobster shell, security has layers — review code before you run it.

knowledge-basevk9778pj2ymg1bm14hf9gx3d9h184fnxnlatestvk9778pj2ymg1bm14hf9gx3d9h184fnxnsupportvk9778pj2ymg1bm14hf9gx3d9h184fnxn

License

MIT-0
Free to use, modify, and redistribute. No attribution required.
Termshttps://spdx.org/licenses/MIT-0.html

Comments