by 安全扫描
OpenClaw
安全
medium confidence该技能通过命令行界面操作 macOS 的 iMessage/SMS 功能,支持列出会话、查看历史、实时监听和发送消息,所有数据访问均在本地完成。
评估建议
该技能安全风险较高,涉及敏感的通信数据访问和消息发送权限。
1. **系统权限要求**:需要 macOS 系统权限访问 Messages 数据库,可能需要完全磁盘访问权限
2. **隐私数据访问**:可读取所有 iMessage/SMS 会话内容、联系人和历史记录,属于高度敏感信息
3. **消息发送能力**:能够以用户身份发送消息,存在被滥用的风险
4. **本地操作**:所有操作在本地进行,数据不上传到外部服务器
**使用注意**:
- 仅在个人受控设备上使用,避免在共享设备上安装
- 定期检查消息发送记录,确认无异常活动
- 注意保护终端访问权限,防止未授权使用
- 重要对话内容可能被读取,注意信息保密
- 建议在测试环境中先验证功能后再正式使用...详细分析 ▾
✓ 用途与能力
The name/description (iMessage/SMS CLI) match the runtime instructions which call the 'imsg' CLI to list chats, history, watch, and send. Requiring Messages.app to be signed in and macOS permissions (Full Disk Access and Automation) is consistent with reading/sending Messages data.
✓ 指令范围
SKILL.md only instructs using the 'imsg' CLI and documents expected flags and macOS permissions. It does not ask to read unrelated files, export data to external endpoints, or access unrelated credentials. It does reference local file paths for attachments (which is expected).
ℹ 安装机制
The skill is instruction-only (no code shipped), but its metadata recommends installing a Homebrew formula from the steipete/tap ('steipete/tap/imsg'). Installing from a third‑party tap is a moderate-risk install vector compared with an official Homebrew/core formula — you should review the formula/source before installing.
✓ 凭证需求
The skill declares no environment variables, no credentials, and no config paths. The macOS permissions (Full Disk Access, Automation control of Messages.app) are sensitive but proportionate to an iMessage CLI that reads and sends Messages.
✓ 持久化与权限
The skill is not set to always:true and does not request special platform-wide persistence. Model invocation is allowed (platform default); that is expected for a user-invocable skill and not a standalone concern here.
安全有层次,运行前请审查代码。
运行时依赖
OSmacOS
版本
latestv1.0.02026/1/5
● 可疑
安装命令
点击复制官方npx clawhub@latest install imsg
镜像加速npx clawhub@latest install imsg --registry https://cn.longxiaskill.com 镜像可用