← Back to Skills Marketplace
70
Downloads
0
Stars
0
Active Installs
1
Versions
Install in OpenClaw
/install wxgzh-mcp
Description
微信公众号草稿创建与管理技能,支持图片上传、创建草稿、发布等操作。需配置 AppID、AppSecret、白名单 IP。
Usage Guidance
This skill appears to implement the advertised WeChat draft and media features, but review these before installing: 1) Provide AppID/AppSecret only via a secure config.json and do not store the file in an unsecured/shared folder; the registry metadata did not declare these credentials so verify config handling. 2) The repo includes docker-compose.yml but no Dockerfile in the manifest — docker-compose build may fail; ask the author for the Dockerfile or use the pip-based instructions in README/SKILL.md instead. 3) Running this will start a FastMCP server and (per compose) expose port 8765 — run inside an isolated environment or restrict network access. 4) Verify the fastmcp package source and version before installing (supply-chain risk). 5) If you must run it, do so in a container/VM with limited privileges, keep config.json protected, and avoid mounting host directories with sensitive data.
Capability Analysis
Type: OpenClaw Skill
Name: wxgzh-mcp
Version: 1.0.0
The skill provides legitimate WeChat Official Account management functionality but contains a significant security vulnerability regarding local file access. The `upload_image` and `upload_thumb` tools in `src/tools/media.py` (implemented in `src/wechat_api.py`) accept arbitrary local file paths and upload the contents to WeChat's servers without any path validation or sandboxing. This allows for potential path traversal attacks where an agent could be coerced into exfiltrating sensitive system files (e.g., credentials or configuration files) by uploading them to the WeChat platform.
Capability Tags
Capability Assessment
Purpose & Capability
The code and SKILL.md implement WeChat Official Account draft and media management as advertised (token, upload, create/list/delete/publish drafts). However the registry metadata claims no required credentials/env vars while the runtime requires a config.json containing AppID and AppSecret — the skill expects sensitive credentials but did not declare them in the registry metadata.
Instruction Scope
Runtime instructions stay within the stated purpose (use WeChat APIs, upload images, create drafts). The SKILL.md also instructs querying a public IP service (api.ipify.org) to set a WeChat whitelist — this is expected for WeChat API use. One oddity: docker-compose is provided but SKILL.md primarily shows pip-based local runs; the compose file would mount host config and uploads, which is reasonable but increases surface area.
Install Mechanism
The package is instruction-only (no automated install spec), with a requirements.txt listing fastmcp and requests (expected). However docker-compose.yml references building the image from '.' but no Dockerfile is present in the repository manifest — attempting docker-compose build will likely fail. The inclusion of docker-compose (and a mount of config.json and uploads) without a Dockerfile or clear build instructions is an operational inconsistency.
Credentials
The skill legitimately needs AppID and AppSecret for the WeChat API and expects them in a plaintext config.json or via WECHAT_MCP_CONFIG env var (docker-compose sets this). That access is proportionate to the purpose. Note: registry metadata did not declare required credentials; also the secrets are stored in a config file that the docker-compose mounts from the host (read-only) — users should ensure the file is protected and not placed in a shared location.
Persistence & Privilege
The code runs an MCP server (FastMCP) and docker-compose exposes port 8765. While the skill does not set always: true or modify other skills, starting a network service on the host/container increases attack surface and could expose the tool remotely if deployed without firewalling. This is expected for an MCP service but worth explicit attention.
How to Use
- Make sure OpenClaw is installed (local or Docker)
- Run the install command in chat:
/install wxgzh-mcp - After installation, invoke the skill by name or use
/wxgzh-mcp - Provide required inputs per the skill's parameter spec and get structured output
Version History
v1.0.0
wxgzh-mcp 1.0.0 初始发布
- 提供微信公众号草稿文章的创建与管理,包括封面图/正文图片上传、草稿创建、查看、删除及发布等功能
- 支持 access_token 获取与自动缓存
- 需配置 AppID、AppSecret 以及添加本机 IP 至公众号白名单
- 包含详细配置引导与常见问题说明
- 提供分模块源码结构及 Docker 部署支持
Metadata
Frequently Asked Questions
What is wxgzh-mcp?
微信公众号草稿创建与管理技能,支持图片上传、创建草稿、发布等操作。需配置 AppID、AppSecret、白名单 IP。 It is an AI Agent Skill for Claude Code / OpenClaw, with 70 downloads so far.
How do I install wxgzh-mcp?
Run "/install wxgzh-mcp" in the OpenClaw or Claude Code chat to install it in one step — no extra setup required.
Is wxgzh-mcp free?
Yes, wxgzh-mcp is completely free, licensed under MIT-0. You can download, install and use it at no cost.
Which platforms does wxgzh-mcp support?
wxgzh-mcp is cross-platform and runs anywhere OpenClaw / Claude Code is available (cross-platform).
Who created wxgzh-mcp?
It is built and maintained by xiaohuozi (@279458179); the current version is v1.0.0.
More Skills