← 返回 Skills 市场

WeChat File Sender

Name: WeChat File Sender
Author: 26048608982lp-ai

作者 26048608982lp-ai · GitHub ↗ · v1.0.1 · MIT-0

cross-platform ⚠ suspicious

171

总下载

当前安装

版本数

在 OpenClaw 中安装

/install wechat-file-sender

功能描述

Send files via Windows WeChat desktop client by automating window control, clipboard, and keyboard input using Node.js and PowerShell scripts.

安全使用建议

What to consider before installing: - The skill will open WeChat and cause the client to send whatever local file you pass; that is network transmission by WeChat even though the script itself makes no direct network calls. Do not use this on sensitive files unless you intend to send them. - Inspect the included PowerShell (send-file.ps1) yourself before running. The skill runs it with -ExecutionPolicy Bypass; that is needed for operation but also means the script will run even if system policies normally block .ps1 files. If the script is tampered with, that bypass could enable execution of malicious PowerShell. - Test with a harmless file and a trusted contact first. The automation uses clipboard and SendKeys and will affect the active desktop (it brings the WeChat window to foreground), so it can disrupt other user activity. - If you plan to allow autonomous agent use of this skill, be cautious: an agent with access to local files could use this skill to exfiltrate data to any WeChat contact. Consider restricting autonomous invocation or requiring explicit human approval for each run. - Prefer running in a sandbox/VM if you want to limit blast radius, and ensure the skill package files are obtained from a trusted source or re-audit them periodically. - Overall: functionality is coherent with the stated purpose, but the "no data exfiltration" claim is misleading and you should verify scripts and control invocation policies before using on sensitive data.

功能分析

Type: OpenClaw Skill Name: wechat-file-sender Version: 1.0.1 The skill automates the Windows WeChat client using PowerShell and UI automation, which are high-risk capabilities. While the developer included security notes and input validation, a command injection vulnerability exists in `scripts/send-file-to-wechat.js`. The `filePath` validation only ensures the path is absolute and fails to sanitize shell metacharacters (like '&'), and the attempt to escape double quotes using `\"` is ineffective against the Windows CMD shell used by `execSync`. This could allow arbitrary command execution if an attacker controls the file path.

能力评估

✓ Purpose & Capability

Name/description align with provided files and instructions: the JS + PowerShell use Windows UI Automation, clipboard, and Win32 calls to control the WeChat desktop client. No unrelated credentials, binaries, or packages are requested.

⚠ Instruction Scope

The SKILL.md and scripts perform window automation, clipboard manipulation, and will cause the WeChat client to transmit the chosen file to a contact. The skill claims "No network calls, no data exfiltration," which is misleading because sending a file via the user’s WeChat client will transmit that file off the machine. The instructions also require running a bundled PowerShell script with ExecutionPolicy Bypass — appropriate for operation but a notable security vector if the script is modified or misused.

✓ Install Mechanism

Instruction-only skill (no install spec) with included JS and inline PowerShell source. Nothing is downloaded from external URLs during install, so no additional install-related network risk is introduced by the skill itself.

✓ Credentials

No environment variables, credentials, or config paths are requested. The skill requires local file-system access to whichever absolute path the caller supplies (expected for a file-sender), and it runs PowerShell with -ExecutionPolicy Bypass which is local but worth noting as it allows the included script to run without changing system policy.

ℹ Persistence & Privilege

always:false (normal) and the skill does not request system-wide persistence. However, the platform default allows autonomous invocation; combined with the ability to read local files and send them via WeChat, this increases potential for unwanted transmission of sensitive files if the agent is permitted to run the skill without human oversight.

如何使用

确保已安装 OpenClaw（本地或 Docker 部署）
在对话框中输入安装命令：/install wechat-file-sender
安装完成后，直接呼叫该 Skill 的名称或使用 /wechat-file-sender 触发
根据 Skill 的参数说明提供必要输入，即可获得结构化输出

版本历史

v1.0.1

- Improved documentation in SKILL.md: now includes PowerShell script source, usage security notice, and install instructions. - Enhanced security details: filePath must be absolute, contactName is validated, and no network/data exfiltration occurs. - Clarified steps, requirements, and implementation notes to make usage and auditing easier. - Outlined explicit OpenClaw trigger phrases and command line usage.

v1.0.0

Initial release of wechat-file-sender. - Send files to any WeChat contact via Windows desktop client using RPA automation. - Includes PowerShell core script and Node.js wrapper for easy command line use. - No admin rights required; relies on Windows Automation API and SendKeys. - Clipboard handling and window focus robustly managed for reliable file transfer. - Supports Chinese contact names via clipboard paste. - Can be triggered from command line or OpenClaw with natural language phrases.

元数据

Slug wechat-file-sender

版本 1.0.1

许可证 MIT-0

累计安装 0

当前安装数 0

历史版本数 2

常见问题

WeChat File Sender 是什么？

Send files via Windows WeChat desktop client by automating window control, clipboard, and keyboard input using Node.js and PowerShell scripts. 它是一个面向 Claude Code / OpenClaw 的 AI Agent Skill 插件，目前累计下载 171 次。

如何安装 WeChat File Sender？

在 OpenClaw 或 Claude Code 对话框中运行命令「/install wechat-file-sender」即可一键安装，无需额外配置。

WeChat File Sender 是免费的吗？

是的，WeChat File Sender 完全免费，采用 MIT-0 许可证，可自由下载、安装和使用。

WeChat File Sender 支持哪些平台？

WeChat File Sender 跨平台运行，可在任意部署了 OpenClaw / Claude Code 的环境中使用（cross-platform）。

谁开发了 WeChat File Sender？

由 26048608982lp-ai（@26048608982lp-ai）开发并维护，当前版本 v1.0.1。