by 安全扫描
OpenClaw
可疑
medium confidenceSkill's functionality (Wolai REST API) is plausible, but there are several inconsistencies and ambiguous instructions around credentials, platform/runtime, and version metadata that warrant caution before installing.
评估建议
This skill appears to implement Wolai API calls and needs a Wolai App Token (WOLAI_TOKEN). Before installing: (1) verify how you'll provide the token — prefer setting WOLAI_TOKEN in a secure config/environment rather than pasting the permanent token into chat; (2) restrict the Wolai app permissions to the minimum required and be ready to revoke/reset the token if needed; (3) note the SKILL.md is Windows PowerShell–oriented (writes to D:\ and uses Windows APIs) so it may not work on non-Windows a...详细分析 ▾
ℹ 用途与能力
The skill claims to operate Wolai notes via the Wolai Open API and the SKILL.md requires a WOLAI_TOKEN — this is appropriate for the stated purpose. However, the registry metadata earlier reported no required env vars/primary credential while the SKILL.md declares WOLAI_TOKEN required; that metadata mismatch is inconsistent.
⚠ 指令范围
SKILL.md contains concrete PowerShell code that calls only the Wolai API endpoint (https://openapi.wolai.com) which is in-scope. Concerns: (1) setup text ambiguously tells users to 'tell the token to the AI assistant' while the pre-check expects WOLAI_TOKEN in the environment — this could encourage pasting a permanent token into chat history; (2) examples write to a fixed Windows path (D:\output.json) and the runtime is Windows PowerShell, but the skill has no OS restriction — instructions are Windows-specific and may not work elsewhere; (3) the skill performs filesystem writes (examples) and requires the ability to read env vars, which are reasonable for the task but should be noted.
✓ 安装机制
No install spec and no code files beyond SKILL.md/_meta.json — instruction-only skill; lowest install risk because nothing is downloaded or executed at install time.
⚠ 凭证需求
SKILL.md requires a single permanent app token (WOLAI_TOKEN), which is proportionate for API access. But the registry metadata contradicts this (says no required env vars/primary credential). The SKILL.md also instructs users in a way that could lead to pasting a long-lived token into chat — risky. The skill does not request unrelated credentials.
✓ 持久化与权限
always is false and model invocation is allowed (defaults). The skill does not request elevated or persistent platform privileges. No evidence it modifies other skills or system-wide settings.
安全有层次,运行前请审查代码。
运行时依赖
无特殊依赖
版本
latestv1.0.72026/3/17
wolai-api-skill 1.0.7 - No file changes detected in this release. - All functionality, documentation, and configuration remain unchanged from the previous version.
● 无害
安装命令
点击复制官方npx clawhub@latest install wolai-api-skill
镜像加速npx clawhub@latest install wolai-api-skill --registry https://cn.longxiaskill.com