Back to skill
Skillv1.0.3
ClawScan security
Qq Zone Photo · ClawHub's context-aware review of the artifact, metadata, and declared behavior.
Scanner verdict
BenignMar 15, 2026, 2:44 AM
- Verdict
- Benign
- Confidence
- medium
- Model
- gpt-5-mini
- Summary
- The skill's code, instructions, and required credentials are consistent with a QQ空间 photo manager; there are minor metadata inconsistencies and operational cautions but no clear signs of misdirection or exfiltration in the provided files.
- Guidance
- This skill appears to do what it says: manage QQ空间 photos using local QQ session cookies. Before installing: (1) Review the full script yourself or run it in an isolated environment, since it performs network calls to QQ endpoints and reads/writes cookies.json and photo files. (2) Only provide cookies you trust and avoid sharing them—cookies grant full access. (3) Install Python dependencies from official PyPI packages in a dedicated virtualenv. (4) If you need stronger assurance, run the tool once with network monitoring to confirm it only talks to qq.com/up.qzone.qq.com endpoints and does not post data to unknown hosts. (5) Note the SKILL.md metadata declares an auth requirement that isn't reflected in registry fields—confirm how your platform will supply the cookie credential before use.
Review Dimensions
- Purpose & Capability
- okName/description (manage QQ Zone photo albums) align with the included CLI script which implements QR login, list/upload/download/create album actions. The tool legitimately needs QQ session cookies and file access for uploads/downloads.
- Instruction Scope
- noteSKILL.md instructs the agent to run the shipped Python script using a cookies.json and to extract cookies from the browser if needed. The instructions reference only cookies and photo paths required for the stated functionality. They explicitly say credentials are stored locally and not uploaded. This is within scope, but the instructions grant the agent permission to read/write a cookies.json and to open files/viewers (QR image).
- Install Mechanism
- noteThere is no install spec (instruction-only), reducing install-time risk. The repo contains requirements.txt (requests, Pillow, qrcode, pycryptodome) so a Python venv with those packages is necessary; the SKILL.md assumes the environment is prepared but does not automate package installation—users should install from trusted registries.
- Credentials
- noteThe script requires QQ session cookies (p_skey, skey, uin) which are proportionate to the stated purpose. However, SKILL.md metadata lists requires.auth ["qq-cookies"] while the registry metadata shows no required env/config — a mild inconsistency. No unrelated credentials or system secrets are requested in the files examined.
- Persistence & Privilege
- okSkill is not forced-always; it does not request elevated or persistent platform privileges. It writes/reads its own cookies.json and temporary QR image files only, which is expected behavior for this tool.