Skillv1.0.10

ClawScan security

Feishu Project(Meego) Connector - Bytedance Internal Version · ClawHub's context-aware review of the artifact, metadata, and declared behavior.

Scanner verdict

BenignMar 17, 2026, 2:58 PM

Verdict: benign
Confidence: medium
Model: gpt-5-mini
Summary: The skill's requirements and instructions are consistent with a Meego/MCP connector that uses an npm mcporter tool and an OAuth credentials file; the main risk is the sensitive credential file and the external npm package it invokes.
Guidance: This skill is coherent with its described purpose, but before installing consider: (1) Verify the npm package (@lark-project/meego-mcporter) and its publisher — inspect its npm page or source repository and confirm the package/version is trusted. (2) Prefer the browser OAuth flow on a local machine; if you use the remote flow, only provide already-authorized credential files yourself and do not allow the agent to fetch credentials from other locations. (3) The skill will read/write ~/.mcporter/credentials.json — ensure file permissions are tight and keep backups. (4) The SKILL.md forbids logging/transmitting credentials, but that relies on the agent enforcing it; treat credential handling as sensitive. (5) If you run this on a shared or production server, consider performing OAuth locally and copying credentials manually rather than letting any agent write files. If you want higher assurance, review the code of the npm package before installing and install the package manually rather than relying on automatic npx installs.

Review Dimensions

Purpose & Capability: okThe name/description (Meego via MCP with OAuth) aligns with the declared binaries (node, npx), the config path (~/.mcporter/credentials.json) and the install of @lark-project/meego-mcporter which provides the meego-mcporter CLI. Nothing requested appears unrelated to the stated purpose.
Instruction Scope: noteSKILL.md instructs the agent to run the mcporter CLI via npx, read and (with explicit user confirmation) write ~/.mcporter/credentials.json, and help the user through a remote OAuth flow. Those actions are necessary for the described OAuth use-cases, but reading/writing credential files is sensitive — the skill text forbids logging or transmitting credentials and requires step-by-step user confirmation, which is good practice but depends on the agent enforcing it.
Install Mechanism: okInstallation is an npm package (@lark-project/meego-mcporter) that creates a meego-mcporter binary. This is a standard registry install (moderate supply-chain risk compared with no install, but coherent with functionality). No arbitrary download URLs or extract-from-remote archives are used.
Credentials: okNo environment variables or unrelated credentials are requested. The only required item is the mcporter credentials file path (~/.mcporter/credentials.json), which is proportional for OAuth-based operation.
Persistence & Privilege: okThe skill is not always-enabled and does not request elevated platform privileges. It will create/modify files under the user's ~/.mcporter directory (expected for credential storage) and does not indicate changes to other skills or system-wide agent config.