← Back to Skills Marketplace
393
Downloads
0
Stars
2
Active Installs
2
Versions
Install in OpenClaw
/install security-news-feed
Description
Collects and summarizes Korean security news hourly from 11 sources using Gemini API, then publishes to Notion and optionally to Tistory blog.
Usage Guidance
What to consider before installing or running this skill:
- Credentials: The skill actually requires several secrets (Gemini/LLM API keys, Notion API key and database IDs, optional Tistory token, Slack webhook). The registry listing said none — do NOT assume no secrets are needed. Create dedicated, least-privilege API tokens (separate integration accounts) if you proceed.
- External repo: SKILL.md asks you to git clone https://github.com/rebugui/OpenClaw.git and run it. The skill package itself already contains many files. Cloning and running an external repository increases risk (arbitrary code). Prefer to audit the included code instead of blindly cloning a third-party repo.
- .env location: Several scripts load a .env from your home directory path (~/.openclaw/workspace/.env). That may cause the skill to read other tokens you keep there. Do not place sensitive or unrelated credentials in that file, or run the code in an isolated environment.
- Browser profile / Selenium: The code references CHROME_USER_DATA_DIR and CHROME_PROFILE_NAME to reuse a Chrome profile for automation. Pointing this to your real browser profile would expose cookies and logged-in sessions (high risk). If you need Selenium, use a fresh, dedicated profile directory or prefer API-based publishing (Tistory API) rather than Selenium automation.
- Network & data flow: The skill will fetch many external sites and send content to LLM and publishing endpoints (Gemini/Notion/Tistory). Audit what content you allow to be uploaded to LLM services and where summaries are published. Consider sanitizing content if you have sensitive internal URLs in the feed.
- Prompt-injection artifact: SKILL.md contained unicode-control-chars flagged as potential prompt-injection. Avoid running any component that auto-submits untrusted text to LLMs without review. Inspect SKILL.md and prompt templates in modules/prompts/* before use.
- Recommended mitigations: run in an isolated VM/container, inspect (or diff) the included code files before executing, do not point CHROME_USER_DATA_DIR to your real browser profile, create minimal-scope API tokens for Notion/Tistory/LLM, and if possible test with network access restricted until you are confident of behavior. If you are not comfortable auditing the code, avoid installing the skill or only run the parts that do not require external credentials.
Capability Analysis
Type: OpenClaw Skill
Name: security-news-feed
Version: 1.0.1
The security-news-feed skill bundle is a legitimate and well-structured tool designed to aggregate, summarize, and publish security news from various Korean and international sources. It utilizes Selenium (in `tistory_handler.py`) and subprocess calls to `curl` (in `skshieldus.py`) to interact with web interfaces and legacy SSL configurations, which are consistent with its stated purpose of automated news collection and publishing. While the code handles sensitive API keys and includes options to disable SSL verification for development or compatibility, these behaviors are documented with warnings and lack evidence of malicious intent or unauthorized data exfiltration.
Capability Assessment
Purpose & Capability
The name/description (Gemini summarization → publish to Notion/Tistory) matches the included code (many crawlers, LLM handler, Notion/Tistory publishers). However the registry metadata declares no required env vars or credentials while SKILL.md and many code files expect numerous secrets (GEMINI_API_KEY, NOTION_API_KEY, NOTION_DATABASE_ID, TISTORY_ACCESS_TOKEN, various LLM keys, Slack webhook, CHROME_USER_DATA_DIR). That mismatch is an incoherence: the skill's manifest understates the credentials it needs.
Instruction Scope
SKILL.md instructs cloning an external GitHub repo and running scripts, and the included code reads environment variables and a .env file. Multiple scripts explicitly load a .env from Path.home()/'.openclaw'/ 'workspace'/.env (i.e., the user's home workspace), and check_notion.py parses that file directly to extract NOTION_API_KEY. The code will perform network requests to many external endpoints (news sites, LLM endpoints, Notion, Tistory). Reading the user's home .openclaw workspace .env (not just a repo-local .env) and using optional Selenium with a user-specified CHROME_USER_DATA_DIR expands scope beyond a simple aggregator and can surface unrelated secrets or browser state.
Install Mechanism
The package is instruction-only in the registry (no install spec), yet SKILL.md tells users to git clone https://github.com/rebugui/OpenClaw.git and pip install -r requirements.txt. That asks the user to download and run code from an external repo (unknown owner). The skill package already contains many code files, so instructing to clone an external repo is inconsistent and increases risk (downloading arbitrary code).
Credentials
The code expects multiple credentials and config: Gemini/GEMINI_API_KEY (LLM), Notion keys and Database IDs, Tistory access token/blog name, Slack webhook, additional LLM provider keys (ZAI/GLM), and CHROME_USER_DATA_DIR/PROFILE for Selenium. Notion/LLM/Tistory tokens are proportionate to the claimed purpose, but (a) the registry declares no required env vars, (b) multiple different LLM providers are referenced (redundant/overbroad), and (c) CHROME_USER_DATA_DIR would allow access to a full browser profile (cookies, logged-in sessions) which is unnecessary unless the user intentionally enables Selenium-based automation — this is a high-sensitivity option and must be treated cautiously.
Persistence & Privilege
always:false (no forced permanent presence). However the code reads/writes local state (SQLite caches, timestamp files) and expects/stores tokens in a .env under ~/.openclaw/workspace/.env. It does not declare modifying other skills. The combination of autonomous scheduling (hourly via user-configured scheduler), reading home workspace .env, and optional Selenium profile reuse increases blast radius if tokens or browser data are reused; not inherently privileged but notable.
How to Use
- Make sure OpenClaw is installed (local or Docker)
- Run the install command in chat:
/install security-news-feed - After installation, invoke the skill by name or use
/security-news-feed - Provide required inputs per the skill's parameter spec and get structured output
Version History
v1.0.1
## Version 1.1.0 (formerly 1.0.1)
- Added skill version field to SKILL.md and updated documentation structure.
- Removed deprecated log file (logs/security_aggregator.log) and unused analysis metadata.
- Refactored and adjusted modules and configuration for improved maintainability.
- Updated dependencies in requirements.txt.
- No user-facing feature additions or removals; internal improvements and cleanup only.
v1.0.0
Initial release
Metadata
Frequently Asked Questions
What is Security News Feed?
Collects and summarizes Korean security news hourly from 11 sources using Gemini API, then publishes to Notion and optionally to Tistory blog. It is an AI Agent Skill for Claude Code / OpenClaw, with 393 downloads so far.
How do I install Security News Feed?
Run "/install security-news-feed" in the OpenClaw or Claude Code chat to install it in one step — no extra setup required.
Is Security News Feed free?
Yes, Security News Feed is completely free, licensed under MIT-0. You can download, install and use it at no cost.
Which platforms does Security News Feed support?
Security News Feed is cross-platform and runs anywhere OpenClaw / Claude Code is available (cross-platform).
Who created Security News Feed?
It is built and maintained by rebugui (@rebugui); the current version is v1.0.1.
More Skills