← 返回 Skills 市场
Wechat To Ima
作者
harven-droid
· GitHub ↗
· v0.1.1
· MIT-0
91
总下载
1
收藏
0
当前安装
2
版本数
在 OpenClaw 中安装
/install wechat-to-ima
功能描述
Save WeChat Official Account articles into IMA notes with preserved article structure. Use when the user sends an mp.weixin.qq.com link and wants to save, ar...
安全使用建议
This skill appears to implement its stated purpose, but exercise caution before installing/running it. Things to consider: 1) The registry metadata omitted required environment variables — you must provide IMA_OPENAPI_CLIENTID and IMA_OPENAPI_APIKEY; verify you trust the destination (ima.qq.com). 2) The Node extractor executes JavaScript snippets from fetched pages using new Function; this can execute code derived from untrusted web content — run the skill in a sandbox or isolated container and avoid feeding it untrusted or arbitrary URLs. 3) The Python script will load a local .env file from the skill directory and inject any keys it contains into the environment — ensure that .env does not contain unrelated or highly privileged secrets. 4) npm install will pull third-party packages — review package-lock or run in an environment where installing packages is safe. If you need higher assurance, ask the maintainer to (a) declare required env vars in registry metadata, (b) avoid executing page JS (or strongly sandbox it), and (c) document .env behavior; or run the tool manually in an isolated environment and review network traffic during an initial test.
功能分析
Type: OpenClaw Skill
Name: wechat-to-ima
Version: 0.1.1
The skill is designed to extract WeChat articles and save them to IMA notes, but it contains a significant security vulnerability. Specifically, `scripts/extract.js` uses `new Function()` multiple times to execute JavaScript code extracted via regular expressions directly from the HTML of the provided URL. This creates a Remote Code Execution (RCE) risk if the agent is directed to a malicious URL designed to mimic a WeChat article. While this pattern is often used in WeChat scrapers to parse obfuscated metadata, it is inherently unsafe. No evidence of intentional malice, such as data exfiltration or backdoors, was found.
能力标签
能力评估
Purpose & Capability
The skill's stated purpose (fetch WeChat article → import into IMA) matches the code: the Python script runs an extractor and posts to IMA. However the registry metadata claims no required environment variables while SKILL.md and the code require IMA_OPENAPI_CLIENTID and IMA_OPENAPI_APIKEY — this mismatch is an incoherence that should be fixed/clarified.
Instruction Scope
Runtime instructions and code fetch remote WeChat pages and parse them (expected). The Node extractor dynamically evaluates JavaScript found in page <script> blocks via new Function to recover embedded variables — this is risky because it effectively executes code derived from untrusted web pages. The Python wrapper also loads a local .env file (SKILL_DIR/.env) into process environment if present, which can pull secrets from disk into the run context. The skill writes a markdown file to the system temp dir and makes HTTP requests only to WeChat (via extractor) and IMA endpoints (ima.qq.com), which matches the purpose.
Install Mechanism
No formal install spec; SKILL.md instructs running npm install in the skill directory. package.json/package-lock are bundled and dependencies (cheerio, request-promise, etc.) are typical for HTML extraction. This is moderate-risk (you must npm install third-party packages locally) but not unusual for an extractor. Note: cheerio in the lockfile specifies a high minimum Node version.
Credentials
The only external credentials used are IMA_OPENAPI_CLIENTID and IMA_OPENAPI_APIKEY, which are proportional to importing into IMA. The concern is that the registry metadata did not declare these required env vars while SKILL.md and the script do; additionally the script will read a .env file from the skill directory and inject any keys there into the environment if present — that behavior should be documented and considered before use.
Persistence & Privilege
The skill does not request always:true, does not modify other skills or system-wide agent settings, and its runtime footprint is limited to creating a temporary markdown file and making outbound HTTP requests to IMA and the article host. Autonomous invocation is allowed but is the platform default.
如何使用
- 确保已安装 OpenClaw(本地或 Docker 部署)
- 在对话框中输入安装命令:
/install wechat-to-ima - 安装完成后,直接呼叫该 Skill 的名称或使用
/wechat-to-ima触发 - 根据 Skill 的参数说明提供必要输入,即可获得结构化输出
版本历史
v0.1.1
Preserve code blocks as fenced Markdown when importing WeChat articles into IMA; load local .env for IMA credentials.
v0.1.0
Initial release: save WeChat articles to IMA with inline-image preservation, cover fallback, and readback verification.
元数据
常见问题
Wechat To Ima 是什么?
Save WeChat Official Account articles into IMA notes with preserved article structure. Use when the user sends an mp.weixin.qq.com link and wants to save, ar... 它是一个面向 Claude Code / OpenClaw 的 AI Agent Skill 插件,目前累计下载 91 次。
如何安装 Wechat To Ima?
在 OpenClaw 或 Claude Code 对话框中运行命令「/install wechat-to-ima」即可一键安装,无需额外配置。
Wechat To Ima 是免费的吗?
是的,Wechat To Ima 完全免费,采用 MIT-0 许可证,可自由下载、安装和使用。
Wechat To Ima 支持哪些平台?
Wechat To Ima 跨平台运行,可在任意部署了 OpenClaw / Claude Code 的环境中使用(cross-platform)。
谁开发了 Wechat To Ima?
由 harven-droid(@harven-droid)开发并维护,当前版本 v0.1.1。
推荐 Skills