← 返回 Skills 市场
Ai Daily Report
作者
fireflywwj
· GitHub ↗
· v1.0.0
· MIT-0
120
总下载
0
收藏
2
当前安装
1
版本数
在 OpenClaw 中安装
/install ai-daily-report
功能描述
每日自动生成 AI 资讯日报并发送。使用场景:用户说 “生成 AI 日报” 或者系统通过定时任务触发。关键词包括:AI日报、AI资讯、开源AI项目、每日报告。
使用说明 (SKILL.md)
AI 每日报告 Skill
目标
- 自动抓取最近 24 小时内的 AI 相关新闻(约 5 条)
- 拉取 GitHub 上最近 24 小时星增量最高、且星数>10k 的优秀开源 AI 项目(约 3 条)
- 将信息整理成 Markdown 报告
- 用 SVG 生成一页可视化报告页面
- 将 SVG 转为 PNG 并通过 Feishu 把图片发送给用户
工作流概述
- 抓取新闻 –
scripts/fetch_news.py使用公开的 RSS/新闻 API,返回 JSON 列表[{title, link, source, date}]。 - 抓取项目 –
scripts/fetch_top_projects.py调用 GitHub Search API(需要GITHUB_TOKEN环境变量),返回[{name, html_url, stars, description}]。 - 生成报告 –
scripts/generate_report.py接收新闻+项目数据,生成report.md同时渲染report.svg(基于 Jinja2 SVG 模板references/report_template.svg)。 - SVG→PNG –
scripts/svg_to_png.py调用rsvg-convert(或magick convert)把report.svg转成report.png。 - 发送 –
scripts/send_report.py使用 Feishu doc API (feishu_docaction=upload_file) 把 PNG 作为文件上传到当前会话并返回链接。
触发方式
- 自然语言触发(聊天): 当用户说出以下任意词句时,Skill 自动启动:
- “生成 AI 日报”
- “帮我做 AI 资讯报告”
- “每日 AI 报告”
- 定时触发(cron): 可以在
HEARTBEAT.md或系统 cron 中调用scripts/run_daily_report.sh,该脚本内部执行同样的 pipeline 并使用feishu_doc发送给预设的聊天 ID(可通过环境变量FEISHU_CHAT_ID)
资源结构
ai-daily-report/
├── SKILL.md # 本文件
├── scripts/
│ ├── fetch_news.py
│ ├── fetch_top_projects.py
│ ├── generate_report.py
│ ├── svg_to_png.py
│ ├── send_report.py
│ └── run_daily_report.sh # 用于 cron 调用(可选)
└── references/
└── report_template.svg # Jinja2 SVG 模板
示例调用(聊天)
用户: 生成 AI 日报
OpenClaw 读取 description,匹配成功 → 加载 SKILL.md,按上述步骤执行。最终在聊天中返回一条包含 PNG 报告的消息,例如:
已为您生成今日 AI 报告,请查收附件。
```(图片作为附件发送)
---
## 参考文档
- `references/report_template.svg` – SVG 布局模板,使用 Jinja2 变量 `{{date}}`, `{{news}}`, `{{projects}}`。
- `references/github_search.md` – GitHub Search API 使用说明。
- `references/rss_news.md` – 常用 AI 新闻 RSS 源列表。
---
## 常见问题
- **需要 GitHub Token 吗?** 是的,请在 `~/.openclaw/env` 或系统环境变量中设置 `GITHUB_TOKEN`。
- **每日运行在哪里配置?** 在 `HEARTBEAT.md` 添加行 `run: /home/ft/.openclaw/workspace/skills/ai-daily-report/scripts/run_daily_report.sh`,或者使用系统 `cron`。
- **如果 Feishu 上传失败怎么办?** `send_report.py` 会捕获错误并返回文字提示,建议检查 `FEISHU_CHAT_ID` 是否正确,以及机器人的文件上传权限。
安全使用建议
Things to check before installing or enabling this skill:
- Confirm required environment variables and scopes: GITHUB_TOKEN (used for GitHub API) and FEISHU_CHAT_ID (where the PNG is sent). Make sure the GITHUB_TOKEN is read-only (minimal scopes) so it cannot be misused.
- Verify the agent environment provides the 'openclaw' CLI and understand what credentials that CLI uses (the scripts call 'openclaw tool feishu_doc' and 'openclaw tool message'). If the CLI uses global agent credentials, ensure those credentials are limited and trusted, because the skill will invoke that CLI to upload/send files.
- Ensure required runtime tools are present and acceptable: rsvg-convert or ImageMagick (system binary), and Python packages (feedparser, jinja2, optional googletrans/cairosvg). These are not declared in registry metadata—ask the publisher to update metadata.
- Review who published this skill (source is unknown). Prefer skills from known publishers or ask the author to provide a homepage and proper registry declarations (required env, required binaries, and minimal token scope guidance).
- Test in a sandboxed environment first and inspect where reports are sent (FEISHU_CHAT_ID). If you don't want automatic sending, run the pipeline locally and review outputs before enabling automated delivery.
If the publisher updates the registry to declare the env vars and binaries, documents the exact token scopes required, and identifies the source/homepage, this would reduce the concerns and could move the assessment to benign.
功能分析
Type: OpenClaw Skill
Name: ai-daily-report
Version: 1.0.0
The skill bundle is a legitimate automation tool designed to generate and send daily AI news reports. It uses standard Python libraries (feedparser, jinja2) and OpenClaw's internal tools to fetch RSS feeds, query the GitHub Search API, and upload reports to Feishu. The code logic in scripts like fetch_news.py and send_report.py is transparent, aligns perfectly with the documentation in SKILL.md, and contains no evidence of data exfiltration, malicious execution, or intentional prompt injection.
能力评估
Purpose & Capability
The skill's name/description (daily AI report) matches what the scripts do: fetch RSS/GitHub, render SVG/PNG, and send via Feishu. However the registry metadata declares no required env vars or binaries while the code clearly expects GITHUB_TOKEN and FEISHU_CHAT_ID and depends on external tools (openclaw CLI, rsvg-convert/ImageMagick). That omission is an incoherence (likely sloppy packaging) but not by itself malicious.
Instruction Scope
The SKILL.md and scripts instruct network calls (RSS feeds, GitHub API) and subprocess invocations. send_report.py calls the 'openclaw' CLI to upload and send files; this invokes an external agent-managed tool that could access agent-level credentials or other tooling. SKILL.md suggests storing GITHUB_TOKEN in ~/.openclaw/env (a system-level location) which implies reading system environment/config—this is not fully reflected in registry declarations. The skill does not instruct reading unrelated user files, but the ability to call the openclaw CLI broadens what the skill can do at runtime and is not documented as a required binary.
Install Mechanism
No install spec (instruction-only) and all code is included in the bundle: low install risk. But runtime depends on Python packages (feedparser, jinja2, optional googletrans/cairosvg), plus system binaries (rsvg-convert or ImageMagick) and the 'openclaw' CLI—none of which are declared in the registry metadata. The absence of declared runtime dependencies is a packaging/information gap to fix.
Credentials
The code requires GITHUB_TOKEN (for GitHub Search API) and FEISHU_CHAT_ID (destination chat) though the registry lists no required env vars. GITHUB_TOKEN is reasonable for the GitHub API, but token scope matters — a token with broad repo or org scopes would be excessive for simple read-only search. FEISHU_CHAT_ID itself is not a secret but the upload/send flow relies on the agent's Feishu credentials (not declared) and could be used to exfiltrate generated content to an attacker-controlled chat if misconfigured.
Persistence & Privilege
always:false and default autonomous invocation are normal. The skill does not request persistent 'always' inclusion and does not modify other skills. Note: it invokes the 'openclaw' CLI which has platform-level reach; that increases blast radius only if the CLI has broad permissions.
如何使用
- 确保已安装 OpenClaw(本地或 Docker 部署)
- 在对话框中输入安装命令:
/install ai-daily-report - 安装完成后,直接呼叫该 Skill 的名称或使用
/ai-daily-report触发 - 根据 Skill 的参数说明提供必要输入,即可获得结构化输出
版本历史
v1.0.0
ai-daily-report 1.0.0 初始版本发布:
- 自动抓取每日最新 AI 资讯和热门开源 AI 项目信息,生成可视化日报
- 一键或定时(cron)触发,支持自然语言指令启动
- 新闻与项目均自动筛选、整理为 Markdown 并渲染 SVG/PNG 图片报告
- 支持通过 Feishu 发送生成的日报图片至用户聊天会话
- 配套脚本与模板资源齐全,方便集成与二次开发
元数据
常见问题
Ai Daily Report 是什么?
每日自动生成 AI 资讯日报并发送。使用场景:用户说 “生成 AI 日报” 或者系统通过定时任务触发。关键词包括:AI日报、AI资讯、开源AI项目、每日报告。 它是一个面向 Claude Code / OpenClaw 的 AI Agent Skill 插件,目前累计下载 120 次。
如何安装 Ai Daily Report?
在 OpenClaw 或 Claude Code 对话框中运行命令「/install ai-daily-report」即可一键安装,无需额外配置。
Ai Daily Report 是免费的吗?
是的,Ai Daily Report 完全免费,采用 MIT-0 许可证,可自由下载、安装和使用。
Ai Daily Report 支持哪些平台?
Ai Daily Report 跨平台运行,可在任意部署了 OpenClaw / Claude Code 的环境中使用(cross-platform)。
谁开发了 Ai Daily Report?
由 fireflywwj(@fireflywwj)开发并维护,当前版本 v1.0.0。
推荐 Skills