Back to skill
Skillv1.0.10
ClawScan security
Feishu Project(Meego) Connector · ClawHub's context-aware review of the artifact, metadata, and declared behavior.
Scanner verdict
BenignMar 17, 2026, 3:55 PM
- Verdict
- benign
- Confidence
- high
- Model
- gpt-5-mini
- Summary
- The skill’s requested binaries, install step, and its instructions to read/write ~/.mcporter/credentials.json are coherent with its stated purpose (connecting to Meego via MCP/OAuth); the main remaining risk is the sensitive credential file access which the SKILL.md attempts to constrain.
- Guidance
- This skill appears internally consistent, but it requires reading and writing your OAuth credential file (~/.mcporter/credentials.json). Before installing: (1) Confirm you trust the npm package owner (@lark-project) — inspect the npm page and source (GitHub) if available. (2) Prefer the browser OAuth flow on a machine where you control the browser rather than letting an agent handle credential files. (3) If using the remote flow, only provide authorized credential files manually and keep backups; verify the agent asks for explicit confirmation before showing or writing credentials. (4) Consider running the npx meego-mcporter auth commands yourself (outside the agent) and only grant the agent access to the credential file after you’ve verified its contents. (5) If you have strict security requirements, review the installed package code (node_modules/@lark-project/meego-mcporter) and the meego-mcporter binary before use.
Review Dimensions
- Purpose & Capability
- okName/description (Meego/Feishu project via MCP) align with required binaries (node, npx), the declared config path (~/.mcporter/credentials.json), and the install of the npm package @lark-project/meego-mcporter which provides the meego-mcporter CLI.
- Instruction Scope
- noteSKILL.md instructs the agent to read ~/.mcporter/credentials.json (to show OAuth client params) and to write user-provided authorized credentials into that file for remote-server flows. That file access is sensitive but explicitly declared in the metadata and the document mandates user confirmation, no logging of credentials, and immediate cleanup of temporary files. The instructions are within the advertised scope but involve high-sensitivity operations that rely on the agent following the stated constraints.
- Install Mechanism
- okInstall uses a named npm package (@lark-project/meego-mcporter) to create a CLI binary (meego-mcporter). This is an expected mechanism for a Node-based CLI; no arbitrary URL downloads or archive extraction are used.
- Credentials
- okNo environment variables or unrelated credentials are requested. The single declared config path (~/.mcporter/credentials.json) is directly relevant to storing OAuth credentials for mcporter and is proportional to the skill's functionality.
- Persistence & Privilege
- okalways is false and the skill is user-invocable; it does not request permanent system-wide presence or modification of other skills. Autonomous invocation is allowed by platform default but not accompanied by other concerning privileges.