Skill flagged — suspicious patterns detected
ClawHub Security flagged this skill as suspicious. Review the scan results before using.
视频号爆款 IP 脚本工厂
v1.3.0生成适合视频号发布的爆款IP内容方案:选题、标题、钩子、口播脚本、镜头建议、封面文案、发布文案、评论引导,以及医美场景下的基础合规改写。
⭐ 0· 118·0 current·0 all-time
MIT-0
Download zip
LicenseMIT-0 · Free to use, modify, and redistribute. No attribution required.
Security Scan
OpenClaw
Benign
high confidencePurpose & Capability
Name/description (video‑script generation for 视频号 / medical-aesthetics) match the package contents: prompt templates, config, services for topics/script/rewrite/compliance, and a local Node CLI. The only runtime external dependency is an LLM API (MODEL_API_KEY / OPENAI_API_KEY) which is expected for a generation skill.
Instruction Scope
SKILL.md and the code limit operations to building prompts, reading bundled config/prompts, invoking a model endpoint, and returning structured JSON. The code reads only local project config/prompt files and stdin/CLI-provided JSON; it does not scan arbitrary system files, read other credentials, or send data to unexpected third-party endpoints beyond the configured model base URL.
Install Mechanism
No install spec that downloads external archives; the bundle is instruction‑first with included source and dist files and expects Node to run locally. Dependencies are dev-only (TypeScript types/build). No high-risk remote downloads or unusual install locations.
Credentials
The registry metadata lists no required env vars, but runtime supports/needs MODEL_API_KEY or OPENAI_API_KEY (and MODEL_BASE_URL / OPENAI_BASE_URL / MODEL_MOCK_RESPONSE) to call an external model. This is proportional to the skill's purpose but users should be aware providing an API key allows the skill to make external requests to that model gateway.
Persistence & Privilege
The skill does not request always: true and does not modify other skills or system settings. It runs on demand or via the agent runtime; autonomous invocation is the platform default but not elevated here.
Scan Findings in Context
[system-prompt-override] expected: The bundle intentionally includes system/persona prompts (prompts/system-prompt.md, persona.md, and others) and the promptBuilder injects those into the built prompt. The scanner flagged a 'system prompt override' pattern in SKILL.md, but that is expected because the skill constructs its own system-level instructions for the model. Review the prompt files to ensure they don't contain undesired directives.
Assessment
This skill appears to be what it says: a local Node-based generator for 视频号 scripts, rewrites, topics and medical-aesthetics compliance checks. Before installing:
- Review prompts/ and config/ files (system-prompt.md, persona.md, config/*.json) to ensure they don't contain hidden instructions you don't want sent to an LLM.
- If you provide a MODEL_API_KEY / OPENAI_API_KEY, the skill will send prompts (including JSONified local config) to the configured model base URL; prefer using a gateway with limited quota/monitoring if you are concerned.
- For offline testing, use MODEL_MOCK_RESPONSE to avoid network calls.
- The skill reads only files bundled with the skill and inputs you provide; it does not exfiltrate to unexpected endpoints beyond the model API. If you need stronger guarantees, inspect dist/ or run in an isolated environment first.tests/openclaw.mock.test.js:299
Shell command execution detected (child_process).
dist/lib/modelInvoker.js:8
Environment variable access combined with network send.
lib/modelInvoker.ts:29
Environment variable access combined with network send.
Patterns worth reviewing
These patterns may indicate risky behavior. Check the VirusTotal and OpenClaw results above for context-aware analysis before installing.Like a lobster shell, security has layers — review code before you run it.
latestvk97az35xt156ecq8y3fb9a2yvd83arzx
License
MIT-0
Free to use, modify, and redistribute. No attribution required.
Runtime requirements
🎬 Clawdis
Binsnode