← 返回 Skills 市场
ddgszc

Mailscope Email Detection

作者 CSN:) · GitHub ↗ · v0.1.0 · MIT-0
cross-platform ✓ 安全检测通过
36
总下载
0
收藏
0
当前安装
1
版本数
在 OpenClaw 中安装
/install mailscope-email-detection-skill
功能描述
Email security detection and analysis. Use this skill whenever the user wants to analyze, scan, or check the security of an email (.eml) file. This includes...
使用说明 (SKILL.md)

Mailscope Email Detection

Use this skill when the user wants to perform security analysis on an email (.eml) file. The skill provides a comprehensive security assessment report by uploading the file to the Mailscope analysis platform.

Language

Respond in the user's language. If they write in Chinese, reply in Chinese; if English, English. Keep technical tokens (paths, flags, field names) in English.

Workflow

Step 0: Configure API Key

When the user provides an API key (e.g., "我的 key 是 msk_xxx", "帮我配置 API Key", "set api key to msk_xxx", "这是key: msk_xxx"), write it into config.json:

  1. Check if config.json exists in the skill root directory. If not, read config.json.example as a template and create config.json from it.
  2. Read the current config.json and parse it as JSON.
  3. Set the api_key field to the key the user provided.
  4. Write the updated JSON back to config.json (use 2-space indentation for readability).
  5. Confirm to the user: "API Key 已配置成功。"

The user gets their API key by applying at https://x.lizhisec.com. If they ask where to get one, point them there.

Step 1: Check prerequisites

Before running the analysis, verify these conditions are met:

  1. Node.js 22+ is available. Check with node --version. If not available, tell the user to install Node.js 22+.
  2. config.json exists with a valid api_key. If missing, guide the user through Step 0 above.

Step 2: Run the analysis script

npx tsx scripts/analyze.ts \x3Cpath/to/email.eml>

The script will:

  1. Upload the .eml file to the analysis platform
  2. Poll for results every 3 seconds until analysis completes
  3. Display a formatted security analysis report

Step 3: Interpret results for the user

The report output is self-contained and human-readable. Key elements to help the user understand:

  • 风险等级 (Risk Tier): risky (dangerous), clean (safe), or other levels
  • 置信度 (Confidence): AI confidence percentage
  • 身份认证 (Authentication): SPF, DKIM, DMARC results
  • 域名信息 (Domain Profile): Registration date, ICP record - recently registered domains are suspicious
  • AI 综合分析 (AI Analysis): Detailed threat assessment covering identity verification, behavioral patterns, intent recognition, and comprehensive judgment

If the email is flagged as risky, emphasize the recommended actions:

  • Isolate the email immediately
  • Block the sender domain
  • Do NOT open attachments or enter passwords
  • Preserve the .eml file for forensics

Error handling

Common errors and how to address them:

Error Cause Solution
API key not configured Missing or empty config.json Guide user to set up config.json
Upload failed (HTTP 4xx) Invalid API key Re-apply at https://x.lizhisec.com
Analysis failed Email could not be processed Check if the .eml file is malformed
Analysis timeout Platform overloaded Wait and retry later
File not found Path typo Verify the .eml file path

What NOT to do

  • Do NOT read raw JSON from the API response and present it directly to users
  • Do NOT hardcode any API keys in responses visible to the user
  • Do NOT modify config.json unless the user explicitly asked you to configure their API key (see Step 0)
  • Do NOT expose the API_BASE_URL configuration to users (internal detail)
安全使用建议
Install only if you are comfortable sending the full email file, including headers, recipients, body content, links, and attachments, to the Mailscope service at https://x.lizhisec.com. Do not use it on confidential, regulated, or third-party-sensitive emails unless that upload is allowed by your policy. Keep the API key in config.json private.
能力标签
requires-sensitive-credentials
能力评估
Purpose & Capability
The capability matches the stated email-security purpose: analyze a user-provided .eml file for phishing, spoofing, URLs, attachments, and AI-assisted risk assessment. The full email upload is sensitive but expected for this workflow.
Instruction Scope
Runtime instructions are scoped to configuring a user-provided API key, checking Node.js, running scripts/analyze.ts on a specified .eml path, and interpreting results. The skill discloses upload-based analysis, though it does not require a separate confirmation immediately before upload.
Install Mechanism
Artifacts contain only SKILL.md and a TypeScript analysis script; there are no install hooks, package manifests, dependency scripts, or automatic execution paths in the submitted artifact.
Credentials
Node.js 22+, network access to https://x.lizhisec.com, and reading the specified .eml file are proportionate to the stated remote email-analysis purpose.
Persistence & Privilege
The skill stores the user-provided API key in config.json when explicitly asked and does not create background workers, persistence mechanisms, privilege escalation, or broad local indexing.
如何使用
  1. 确保已安装 OpenClaw(本地或 Docker 部署)
  2. 在对话框中输入安装命令:/install mailscope-email-detection-skill
  3. 安装完成后,直接呼叫该 Skill 的名称或使用 /mailscope-email-detection-skill 触发
  4. 根据 Skill 的参数说明提供必要输入,即可获得结构化输出
版本历史
v0.1.0
Initial release of mailscope-email-detection-skill. - Enables security analysis of email (.eml) files, including phishing and malware detection. - Supports API key configuration through user instructions in either Chinese or English. - Guides the user to ensure Node.js 22+ is installed and API key is set before analysis. - Provides instructions for running the analysis script and interpreting the results. - Includes comprehensive error handling and clear user guidance for common setup and analysis issues.
元数据
Slug mailscope-email-detection-skill
版本 0.1.0
许可证 MIT-0
累计安装 0
当前安装数 0
历史版本数 1
常见问题

Mailscope Email Detection 是什么?

Email security detection and analysis. Use this skill whenever the user wants to analyze, scan, or check the security of an email (.eml) file. This includes... 它是一个面向 Claude Code / OpenClaw 的 AI Agent Skill 插件,目前累计下载 36 次。

如何安装 Mailscope Email Detection?

在 OpenClaw 或 Claude Code 对话框中运行命令「/install mailscope-email-detection-skill」即可一键安装,无需额外配置。

Mailscope Email Detection 是免费的吗?

是的,Mailscope Email Detection 完全免费,采用 MIT-0 许可证,可自由下载、安装和使用。

Mailscope Email Detection 支持哪些平台?

Mailscope Email Detection 跨平台运行,可在任意部署了 OpenClaw / Claude Code 的环境中使用(cross-platform)。

谁开发了 Mailscope Email Detection?

由 CSN:)(@ddgszc)开发并维护,当前版本 v0.1.0。

推荐 Skills
self-improving agent
Captures learnings, errors, and corrections to enable continuous improvement. Use when: (1) A command or operation fails unexpectedly, (2) User corrects Clau...
⬇ 463283 · by pskoett
Skill Vetter
Security-first skill vetting for AI agents. Use before installing any skill from ClawdHub, GitHub, or other sources. Checks for red flags, permission scope, and suspicious patterns.
⬇ 259410 · by spclaudehome
Polymarket
Query Polymarket prediction markets. Check odds, find trending markets, search events, track price movements.
⬇ 232503 · by joelchance
Self-Improving + Proactive Agent
Self-reflection + Self-criticism + Self-learning + Self-organizing memory. Agent evaluates its own work, catches mistakes, and improves permanently. Use when...
⬇ 200423 · by ivangdavila
Github
Interact with GitHub using the `gh` CLI. Use `gh issue`, `gh pr`, `gh run`, and `gh api` for issues, PRs, CI runs, and advanced queries.
⬇ 191115 · by steipete
ontology
Typed knowledge graph for structured agent memory and composable skills. Use when creating/querying entities (Person, Project, Task, Event, Document), linkin...
⬇ 190156 · by oswalpalash

💬 留言讨论