Skillv1.0.0

ClawScan security

Feishu File Send · ClawHub's context-aware review of the artifact, metadata, and declared behavior.

BenignApr 17, 2026, 4:54 AM

Verdict: benign
Confidence: high
Model: gpt-5-mini
Summary: The skill's instructions, required files/paths, and behavior are consistent with its stated purpose (reliable Feishu file sending); it requests no credentials, installs nothing, and only operates on local files the user instructs it to send.
Guidance: This skill appears coherent and focused: it will send files located under local allowed paths (e.g. ~/.openclaw/workspace) via the platform's message tool, and recommends sending text and attachments as separate messages. Before using it, be aware that any file you ask the assistant to send must be readable from the local path you provide — do not request sending secrets or sensitive local files. Editing mediaLocalRoots or restarting the gateway (suggested in the doc) requires manual changes to your openclaw.json and a restart; only do that if you understand the config change. If you want extra caution, test with non-sensitive files first and confirm the messaging tool behaves as you expect.

Purpose & Capability: okThe name/description (Feishu file sending) match the instructions: checking mediaLocalRoots, sending a text message then a separate media message, and copying files into an allowed workspace path are all expected and proportionate to the stated purpose.
Instruction Scope: okRuntime instructions reference only local file paths (e.g. ~/.openclaw/workspace, /tmp) and the message.send tool with a media parameter — exactly what a file-send helper needs. The skill does not attempt to read unrelated config, secrets, or network endpoints beyond sending the file via the messaging tool.
Install Mechanism: okInstruction-only skill with no install spec and no code files; nothing is written to disk or downloaded by the skill itself.
Credentials: okNo environment variables, credentials, or external tokens are requested. The only config referenced is the local Feishu channel config (mediaLocalRoots), which is appropriate for controlling local-file sending behavior.
Persistence & Privilege: okSkill is not always-enabled and does not request persistent or elevated privileges. It only advises editing local gateway config (openclaw.json) if you choose to whitelist additional paths — that requires explicit user action outside the skill.