← Back to Skills Marketplace

Send File

Name: Send File
Author: wlong800

by wlong800 · GitHub ↗ · v1.0.1 · MIT-0

cross-platform ⚠ suspicious

501

Downloads

Stars

Active Installs

Versions

Install in OpenClaw

/install send-file

Description

发送文件到消息平台。触发词：发送文件、发送文档、发送截图、传文件、发文件。支持飞书等平台，内容优先级：生成的文档 > 本地文件 > 截图。

Usage Guidance

This skill appears to implement legitimate file-upload behavior for Feishu, but there are clear mismatches you should address before installing: (1) The registry metadata does not declare FEISHU_APP_ID / FEISHU_APP_SECRET even though the scripts and SKILL.md require them — ask the publisher to update metadata so automated systems know the skill needs secrets. (2) Inspect the bundled scripts yourself (they are short and readable) to confirm they only call official Feishu endpoints; the provided Python script does call Feishu APIs and performs uploads, which is expected. (3) Avoid pasting sensitive secrets into ~/.zshrc; prefer a secure secret store or environment mechanism and remove long-lived creds when no longer needed. (4) Be aware the skill will run local scripts and can read any file path you give it (or that the agent may search for if you allow it to infer 'workspace' files), so don't ask it to send highly sensitive files without reviewing behavior. If you cannot verify the publisher or prefer stricter controls, run the scripts in a sandboxed environment or request the author to publish the skill with correct metadata and a vetted install procedure.

Capability Analysis

Type: OpenClaw Skill Name: send-file Version: 1.0.1 The skill bundle provides a legitimate utility for sending local files, screenshots, and generated documents to messaging platforms like Feishu, Telegram, and Discord. The included Python script (send_feishu_file.py) and shell script (send_file.sh) implement standard API interactions with the Feishu Open Platform and perform basic file validation. There is no evidence of malicious intent, obfuscation, or unauthorized data exfiltration beyond the stated purpose of the tool.

Capability Assessment

⚠ Purpose & Capability

The skill claims to send files to messaging platforms (Feishu, Telegram, Discord) and includes scripts that implement Feishu upload/send flows — that is coherent. However, the registry metadata lists no required environment variables or primary credential, while both SKILL.md and scripts require FEISHU_APP_ID and FEISHU_APP_SECRET. The omission of those required credentials from the declared metadata is an important inconsistency.

ℹ Instruction Scope

SKILL.md explicitly instructs the agent to execute a local Python script (exec) to upload files and to prefer generated files > local files > screenshots. That scope (reading local file paths, taking screenshots, and uploading them to an external service) is consistent with a 'send file' skill but grants the agent permission to access arbitrary user-supplied local paths and to run local scripts. The doc also suggests editing ~/.zshrc to store credentials, which is a persistence guidance the user should consider carefully.

✓ Install Mechanism

There is no install spec (instruction-only with included script files). No remote download or execution-from-URL is present. Scripts are bundled with the skill, so nothing is fetched from external release hosts during install. This is lower risk than remote installs, though shipped scripts still execute locally.

⚠ Credentials

FEISHU_APP_ID and FEISHU_APP_SECRET are required by the Python script and are appropriate for Feishu integration, but the skill registry metadata does not declare any required env vars or a primary credential. That mismatch reduces transparency and prevents automated gating of secrets. The skill also instructs persisting secrets into shell rc files (e.g., ~/.zshrc), which is convenient but may be inappropriate for sensitive credentials.

ℹ Persistence & Privilege

The skill does not request always:true and does not modify other skills or system-wide settings. However, the instructions encourage the user to persist Feishu credentials in shell rc files, which elevates long-term access to those credentials. The agent is also instructed to exec local scripts, allowing runtime execution of bundled code.

How to Use

Make sure OpenClaw is installed (local or Docker)
Run the install command in chat: /install send-file
After installation, invoke the skill by name or use /send-file
Provide required inputs per the skill's parameter spec and get structured output

Version History

v1.0.1

修复：统一使用 stream 类型上传文件，避免飞书 API 对图片等类型的限制

v1.0.0

Initial release: 飞书文件发送功能，支持 Excel/Word/PDF/图片等多种文件类型

Metadata

Slug send-file

Version 1.0.1

License MIT-0

All-time Installs 2

Active Installs 2

Total Versions 2

Frequently Asked Questions

What is Send File?

发送文件到消息平台。触发词：发送文件、发送文档、发送截图、传文件、发文件。支持飞书等平台，内容优先级：生成的文档 > 本地文件 > 截图。 It is an AI Agent Skill for Claude Code / OpenClaw, with 501 downloads so far.

How do I install Send File?

Run "/install send-file" in the OpenClaw or Claude Code chat to install it in one step — no extra setup required.

Is Send File free?

Yes, Send File is completely free, licensed under MIT-0. You can download, install and use it at no cost.

Which platforms does Send File support?

Send File is cross-platform and runs anywhere OpenClaw / Claude Code is available (cross-platform).

Who created Send File?

It is built and maintained by wlong800 (@wlong800); the current version is v1.0.1.

More Skills