← Back to Skills Marketplace

wx-mp-push

Name: wx-mp-push
Author: onceyoungs

by onceyoungs · GitHub ↗ · v1.0.0 · MIT-0

cross-platform ⚠ suspicious

Downloads

Stars

Active Installs

Versions

Install in OpenClaw

/install wx-mp-push

Description

自动化微信公众号文章发布，通过 API 创建和管理文章草稿，支持 Markdown 和 HTML 两种输入格式，自动 MD→HTML 转换，支持封面图和正文图片自动上传。用于：发布文章到公众号、创建内容草稿、自动化内容工作流、或设置定时发布系统。

Usage Guidance

This skill appears to implement the advertised WeChat article-publishing features, but proceed with caution: 1) It expects you to put AppID/AppSecret into config.json — keep that file private and do not check it into source control. 2) The publish script will scan article HTML for <img src="..."> and will open local files (relative or absolute) and upload them to WeChat; if the HTML contains paths to sensitive files (e.g., /etc/… or other local secrets) those files could be read and sent to an external service. Don't run this on machines containing sensitive data unless you inspect the code and control the content it processes. 3) Documentation has contradictions about handling external URLs — verify whether external remote images are fetched and re-uploaded. 4) Review the script (publish_article.py) yourself, run it in an isolated environment (or with a test account) first, and restrict where config.json and the token cache are stored. If you want a safer setup, provide only sanitized content (no absolute paths), or run the tool in a container with limited filesystem visibility and network access. If you want, I can point out specific lines in publish_article.py that perform file reads and uploads so you can inspect them more closely.

Capability Analysis

Type: OpenClaw Skill Name: wx-mp-push Version: 1.0.0 The skill is a functional WeChat article publisher but contains a Server-Side Request Forgery (SSRF) vulnerability in 'scripts/publish_article.py'. The '_download_url_to_temp' function fetches content from arbitrary URLs provided in the article content without validation, which could be exploited to access internal network resources. Additionally, the script handles sensitive WeChat credentials (AppID/AppSecret) and stores access tokens locally in plaintext, which are risky but necessary capabilities for its stated purpose. No evidence of intentional malice or data exfiltration was found.

Capability Assessment

ℹ Purpose & Capability

Name/description align with what is provided: a Python script that converts Markdown to WeChat-friendly HTML, manages access tokens, uploads images, and creates drafts via the WeChat API. The required credentials (AppID/AppSecret) are stored in a local config.json file, which is proportionate to the stated functionality.

⚠ Instruction Scope

Runtime instructions and the script will scan HTML for <img> src attributes and will open/read local files (relative or absolute) referenced there and upload them to WeChat. Because user-supplied HTML can include arbitrary local paths, this behavior could cause inadvertent reading and uploading of sensitive local files. The docs are also inconsistent about handling external URLs (some places say external URLs are kept, other examples imply external images may be uploaded), increasing risk of unexpected network I/O.

✓ Install Mechanism

No install spec; the skill is instruction + script only. It uses Python and a single dependency (httpx) which is reasonable and low-risk compared with arbitrary downloads.

ℹ Credentials

No platform environment variables are requested. Secrets are expected in config.json (appId/appSecret). That is proportionate, but storing AppSecret in a plaintext config file and the script caching tokens under .tokens should be noted as a local secret storage decision that the user must manage securely.

ℹ Persistence & Privilege

Skill is not always-enabled and is user-invocable (normal). However, because the script can read local files referenced by content and upload them externally, allowing autonomous invocation or running in an environment with sensitive files increases the blast radius; consider invocation controls and sandboxing.

How to Use

Make sure OpenClaw is installed (local or Docker)
Run the install command in chat: /install wx-mp-push
After installation, invoke the skill by name or use /wx-mp-push
Provide required inputs per the skill's parameter spec and get structured output

Version History

v1.0.0

wx-mp-push 1.0.0 – Initial Release - Automates publishing articles to WeChat Official Accounts via API. - Supports both Markdown and HTML input, with built-in Markdown-to-WeChat-HTML conversion. - Automatically manages images: detects, uploads, and replaces cover and content image URLs. - Offers multi-account support and secure access token management. - Includes command-line tools for direct, scheduled, and workflow-integrated publishing. - Provides comprehensive guides for configuration, error troubleshooting, and best security practices.

Metadata

Slug wx-mp-push

Version 1.0.0

License MIT-0

All-time Installs 0

Active Installs 0

Total Versions 1

Frequently Asked Questions

What is wx-mp-push?

自动化微信公众号文章发布，通过 API 创建和管理文章草稿，支持 Markdown 和 HTML 两种输入格式，自动 MD→HTML 转换，支持封面图和正文图片自动上传。用于：发布文章到公众号、创建内容草稿、自动化内容工作流、或设置定时发布系统。 It is an AI Agent Skill for Claude Code / OpenClaw, with 92 downloads so far.

How do I install wx-mp-push?

Run "/install wx-mp-push" in the OpenClaw or Claude Code chat to install it in one step — no extra setup required.

Is wx-mp-push free?

Yes, wx-mp-push is completely free, licensed under MIT-0. You can download, install and use it at no cost.

Which platforms does wx-mp-push support?

wx-mp-push is cross-platform and runs anywhere OpenClaw / Claude Code is available (cross-platform).

Who created wx-mp-push?

It is built and maintained by onceyoungs (@onceyoungs); the current version is v1.0.0.

More Skills