Requirements
- Target platform
- OpenClaw
- Install method
- Manual import
- Extraction
- Extract archive
- Prerequisites
- OpenClaw
- Primary doc
- SKILL.md
Tencent SkillHub ยท Developer Tools
RSS Feeds
RSS/Atom feed digest with optional CVE enrichment, Ghost CMS drafts, and channel notifications
skill openclawclawhub Free
RSS/Atom feed digest with optional CVE enrichment, Ghost CMS drafts, and channel notifications
โฌ 0 downloads โ
0 stars Unverified but indexed
Install for OpenClaw
Known item issue.
This item's current download entry is known to bounce back to a listing or homepage instead of returning a package file.
Quick setup
- Open the source page and confirm the package flow manually.
- Review SKILL.md if you can obtain the files.
- Treat this source as manual setup until the download is verified.
Package facts
- Download mode
- Manual review
- Package format
- ZIP package
- Source platform
- Tencent SkillHub
- What's included
- README.md, SKILL.md, catalog.yaml, examples/full-config.json, examples/minimal-config.json, openclaw.plugin.json
Validation
- Open the source listing and confirm there is a real package or setup artifact available.
- Review SKILL.md before asking your agent to continue.
- Treat this source as manual setup until the upstream download flow is fixed.
Install with your agent
Agent handoff
Use the source page and any available docs to guide the install because the item currently does not return a direct package file.
- Open the source page via Open source listing.
- If you can obtain the package, extract it into a folder your agent can access.
- Paste one of the prompts below and point your agent at the source page and extracted files.
New install
I tried to install a skill package from Yavira, but the item currently does not return a direct package file. Inspect the source page and any extracted docs, then tell me what you can confirm and any manual steps still required. Then review README.md for any prerequisites, environment setup, or post-install checks.
Upgrade existing
I tried to upgrade a skill package from Yavira, but the item currently does not return a direct package file. Compare the source page and any extracted docs with my current installation, then summarize what changed and what manual follow-up I still need. Then review README.md for any prerequisites, environment setup, or post-install checks.
Trust & source
Release facts
- Source
- Tencent SkillHub
- Verification
- Indexed source record
- Version
- 0.2.0
Provenance
- Publisher
- homeofe
- Source page
- View original listing
- Canonical URL
- Open canonical page
Documentation
@elvatis_com/openclaw-rss-feeds
OpenClaw plugin for RSS and Atom security digests with optional NVD CVE enrichment, Ghost CMS draft publishing, and channel notifications.
Installation
npm install @elvatis_com/openclaw-rss-feeds Then enable the plugin in your OpenClaw plugin config.
Configuration
The plugin schema is defined in openclaw.plugin.json. Example with all supported options: { "plugins": { "openclaw-rss-feeds": { "feeds": [ { "id": "fortinet", "name": "Fortinet PSIRT", "url": "https://www.fortiguard.com/rss/ir.xml", "keywords": ["fortinet", "fortigate", "fortios"], "enrichCve": true, "cvssThreshold": 7, "tags": ["fortinet", "security", "digest"], "docsUrlTemplate": "https://docs.fortinet.com/product/{product}/{version}/release-notes", "productHighlightPattern": "Forti(?:Gate|OS|Analyzer|Manager|Client|Proxy)" }, { "id": "m365", "name": "Microsoft 365 Message Center", "url": "https://www.microsoft.com/en-us/microsoft-365/roadmap?filters=&searchterms=&rss=1", "keywords": ["security", "vulnerability", "defender"], "enrichCve": true, "cvssThreshold": 6.5, "tags": ["microsoft-365", "security"] }, { "id": "bsi", "name": "BSI CERT-Bund", "url": "https://wid.cert-bund.de/portal/wid/securityadvisory?rss", "keywords": ["kritisch", "critical", "cve"], "enrichCve": false, "tags": ["bsi", "cert-bund"] }, { "id": "heise-security", "name": "Heise Security", "url": "https://www.heise.de/security/rss/news-atom.xml", "keywords": ["cve", "security", "ransomware"], "enrichCve": false, "tags": ["heise", "security-news"] } ], "schedule": "0 9 1 * *", "lookbackDays": 31, "ghost": { "url": "https://blog.example.com", "adminKey": "<ghost-admin-key-id>:<ghost-admin-key-secret-hex>" }, "notify": [ "whatsapp:<phone>", "telegram:123456789" ], "nvdApiKey": "<nvd-api-key-optional>" } } }
Automatic run via cron schedule
If schedule is set, the plugin registers a scheduler and runs automatically. Example: 0 9 1 * * runs at 09:00 on day 1 of every month 0 8 * * 1 runs every Monday at 08:00
Manual run via tool
You can trigger digest generation manually with the registered tool: Tool name: rss_run_digest Optional parameter: dryRun: true dryRun fetches and formats the digest but skips Ghost publishing and notifications.
CVE Enrichment
If a feed has enrichCve: true, the plugin calls the NVD CVE API and enriches the digest with: CVE ID CVSS score (filtered by cvssThreshold) CVE description Link to NVD details Notes: CVE enrichment is keyword-driven via each feed's keywords Requests are rate-limited between keyword lookups NVD failures are handled as non-fatal, feed processing continues
Ghost CMS Integration
If ghost is configured, the digest is published as a draft post through the Ghost Admin API. Implementation details: HS256 JWT is generated from adminKey (id:secret format) API endpoint: /ghost/api/admin/posts/?source=html Digest is sent as HTML body Tags are merged from all configured feed tags If Ghost fails, digest generation still succeeds and the error is reported in result metadata and optional notifications.
Notifications
If notify contains targets (format channel:target), a summary notification is sent after the run. Example targets: whatsapp:<phone> telegram:123456789 discord:#security
Development
npm install npx tsc --noEmit npm test npm run build
License
MIT
Category context
Code helpers, APIs, CLIs, browser automation, testing, and developer operations.
Source: Tencent SkillHub
Largest current source with strong distribution and engagement signals.
Package contents
Included in package
4 Config2 Docs
- SKILL.md
- README.md
- catalog.yaml
- examples/full-config.json
- examples/minimal-config.json
- openclaw.plugin.json