← 返回 Skills 市场
632
总下载
0
收藏
2
当前安装
1
版本数
在 OpenClaw 中安装
/install wecom-openclaw
功能描述
Integrate WeChat Work (Enterprise WeChat) with OpenClaw for intelligent messaging. Enables receiving messages from WeChat Work, processing them with Claude A...
安全使用建议
This adapter largely does what it claims (WeChat Work ↔ OpenClaw) but there are a few red flags you should consider before installing:
- The registry metadata incorrectly states 'no required env vars' while the code requires multiple sensitive secrets (CORP_ID, AGENT_ID, AGENT_SECRET, APP_SECRET, WEBHOOK_TOKEN, OPENCLAW_TOKEN). Treat this as an inconsistency and verify the source/trustworthiness of the package before supplying credentials.
- Inspect and (if you plan to run it) modify the code to ensure it does not log sensitive fields. The GET /webhook handler currently logs echostr and signatures; remove or sanitize such logs.
- The security guide suggests filtering AI replies, but the runtime does not apply a filter before sending replies. Add filtering (or validate replies) to avoid accidental disclosure of secrets in responses.
- getAccessToken falls back to AGENT_SECRET if APP_SECRET is missing — that is suspicious/incorrect behavior; ensure you set APP_SECRET correctly and consider changing the code to fail instead of using the wrong key.
- The deploy instructions use cloudflared quick tunnels for convenience — do not use quick tunnels in production; prefer a stable named tunnel or proper hosting and add your server IP to WeChat Work’s trusted list as required.
- Run this adapter in an isolated environment (dedicated user, limited network egress, local firewall rules), avoid exposing OpenClaw/API tokens broadly, and rotate credentials after testing.
If you don't trust the publisher or cannot audit the code yourself, do not install or provide any production credentials. If you proceed, apply the logging sanitization and reply-filtering changes, and verify APP_SECRET behavior before putting it into production.
功能分析
Type: OpenClaw Skill
Name: wecom-openclaw
Version: 1.0.0
The skill bundle provides a legitimate integration between WeChat Work (Enterprise WeChat) and OpenClaw. The core logic in `scripts/index.js` correctly implements WeChat's mandatory AES-256-CBC encryption/decryption and SHA1 signature verification protocols. The deployment script (`scripts/deploy.sh`) and documentation (`SKILL.md`, `security-guide.md`) are transparent, follow best practices for webhook handling (such as async replies to avoid timeouts), and contain no evidence of data exfiltration, unauthorized execution, or prompt injection attacks.
能力评估
Purpose & Capability
The skill's code, SKILL.md, and scripts all implement a WeChat Work adapter that calls OpenClaw and therefore legitimately requires WeChat credentials and an OpenClaw token. However the registry metadata claims 'no required env vars' while the SKILL.md and scripts require CORP_ID, AGENT_ID, AGENT_SECRET, APP_SECRET, WEBHOOK_TOKEN and OPENCLAW_TOKEN. That metadata mismatch is an incoherence that could mislead users about sensitive requirements.
Instruction Scope
SKILL.md gives concrete, appropriate runtime instructions (deploy, edit .env, run, expose tunnel). The code follows that workflow. Concerns: the code logs the GET echostr and signature values (which may include sensitive encrypted payload), the security-guide recommends content filtering and log sanitization but the runtime path does not apply the suggested filterSensitiveContent function to AI replies, and getAccessToken falls back to AGENT_SECRET if APP_SECRET is missing (mixing encryption key and app secret). These gaps increase risk of accidental leakage or misconfiguration.
Install Mechanism
No remote download/install from untrusted URLs. The provided deploy.sh copies files to a user directory and runs 'npm install', which pulls normal npm dependencies. This is standard for a Node.js adapter and does not in itself indicate an elevated supply-chain risk beyond typical npm dependencies.
Credentials
The environment variables the code requires (WeChat CorpID/AgentID/EncodingAESKey/AppSecret/Webhook token and OPENCLAW_TOKEN) are appropriate for the adapter's function. However the registry metadata lists none required (incoherent). Also the code writes logs that may contain sensitive values and the OpenClaw token is sent as a Bearer header — make sure that token is scoped and rotated. The fallback to use AGENT_SECRET in getAccessToken is unexpected and could reveal misuse of keys.
Persistence & Privilege
The skill does not request elevated platform privileges or 'always' inclusion. It installs files under a user directory, creates a logs folder, and runs as a normal user service. That level of persistence and privilege is expected for this adapter.
如何使用
- 确保已安装 OpenClaw(本地或 Docker 部署)
- 在对话框中输入安装命令:
/install wecom-openclaw - 安装完成后,直接呼叫该 Skill 的名称或使用
/wecom-openclaw触发 - 根据 Skill 的参数说明提供必要输入,即可获得结构化输出
版本历史
v1.0.0
Initial release with all battle-tested fixes: msg_signature verification, AES-256-CBC decryption, async reply pattern, IP whitelist handling
元数据
常见问题
WeChat Work OpenClaw Adapter 是什么?
Integrate WeChat Work (Enterprise WeChat) with OpenClaw for intelligent messaging. Enables receiving messages from WeChat Work, processing them with Claude A... 它是一个面向 Claude Code / OpenClaw 的 AI Agent Skill 插件,目前累计下载 632 次。
如何安装 WeChat Work OpenClaw Adapter?
在 OpenClaw 或 Claude Code 对话框中运行命令「/install wecom-openclaw」即可一键安装,无需额外配置。
WeChat Work OpenClaw Adapter 是免费的吗?
是的,WeChat Work OpenClaw Adapter 完全免费,采用 MIT-0 许可证,可自由下载、安装和使用。
WeChat Work OpenClaw Adapter 支持哪些平台?
WeChat Work OpenClaw Adapter 跨平台运行,可在任意部署了 OpenClaw / Claude Code 的环境中使用(cross-platform)。
谁开发了 WeChat Work OpenClaw Adapter?
由 richagain(@richagain)开发并维护,当前版本 v1.0.0。
推荐 Skills