Back to skill
Skillv0.2.1
ClawScan security
Agent2RSS - AI Content to RSS Feed · ClawHub's context-aware review of the artifact, metadata, and declared behavior.
Scanner verdict
BenignFeb 26, 2026, 6:18 AM
- Verdict
- benign
- Confidence
- high
- Model
- gpt-5-mini
- Summary
- The skill's code and runtime instructions match its described purpose (managing RSS channels and pushing content); nothing requested is disproportionate, but it stores and transmits channel tokens to the configured remote server so you should only use/trust servers you control or trust.
- Guidance
- This skill appears to do what it says: it manages RSS channels and pushes content to a configured Agent2RSS server. Before installing or using it, consider: (1) The default server is a remote host (https://agent2rss.yaotutu.top:8765). Only use that host if you trust it — you can set SERVER_URL to a self-hosted instance. (2) Channel tokens (secrets) are stored in ~/.openclaw/workspace/.skill-data/agent2rss-client/config.json and are sent to the configured server as Authorization headers; ensure that file is not committed to version control and has appropriate permissions. (3) If you have sensitive content, self-host the server or review the server's privacy/security before sending posts. (4) You can review and run the provided scripts locally to confirm behavior; rotate tokens if you suspect exposure.
Review Dimensions
- Purpose & Capability
- okName/description match the included script and docs. Required tools (bash, curl, jq) and operations (create channels, upload posts, health checks) are appropriate for an RSS push client. No unrelated credentials or binaries are requested.
- Instruction Scope
- noteSKILL.md and the script clearly limit runtime actions to reading/writing a config file in the skill-data directory and making HTTP(S) calls to the configured serverUrl (default https://agent2rss.yaotutu.top:8765). The instructions do not attempt to read other user files or system credentials. Note: the script will read/write $HOME/.openclaw/workspace/.skill-data/agent2rss-client/config.json where channel tokens are stored.
- Install Mechanism
- okNo install spec — instruction-only plus a helper shell script. Nothing is downloaded or installed at runtime by the skill itself, minimizing install-time risk.
- Credentials
- noteThe skill declares no required env vars but supports optional CONFIG_DIR/CONFIG_FILE/SERVER_URL/DRY_RUN. Channel tokens are persisted in the skill's config.json and used as 'Authorization: Bearer <token>' when calling the configured server. Storing tokens locally and sending them to the default remote service is expected for this function but is sensitive — the skill attempts to set file permissions to 600, but you should verify file safety and only use trusted servers.
- Persistence & Privilege
- okalways is false and the skill does not request system-wide privileges. The script writes only to its own skill-data config path and does not modify other skills or global agent settings.