← 返回
未分类 Key

mailscope-email-detection-skill

Email security detection and analysis. Use this skill whenever the user wants to analyze, scan, or check the security of an email (.eml) file. This includes phishing detection, spoofing analysis, malicious attachment scanning, and general email threat assessment. Also use this skill when the user wants to configure their Mailscope API key (e.g. "set my api key", "configure the key", "here is my api key", "帮我配置 key"). Trigger when the user says things like "analyze this email", "check if this ema
Email security detection and analysis. Use this skill whenever the user wants to analyze, scan, or check the security of an email (.eml) file. This includes phishing detection, spoofing analysis, malicious attachment scanning, and general email threat assessment. Also use this skill when the user wants to configure their Mailscope API key (e.g. "set my api key", "configure the key", "here is my api key", "帮我配置 key"). Trigger when the user says things like "analyze this email", "check if this email is safe", "scan this .eml file", "is this phishing?", or provides a path to an .eml file and asks about its safety.
yjkj999999
未分类 community v1.0.0 1 版本 100000 Key: 需要
★ 0
Stars
📥 13
下载
💾 0
安装
1
版本
#latest

概述

Mailscope Email Detection

Use this skill when the user wants to perform security analysis on an email (.eml) file. The skill provides a comprehensive security assessment report by uploading the file to the Mailscope analysis platform.

Language

Respond in the user's language. If they write in Chinese, reply in Chinese; if English, English. Keep technical tokens (paths, flags, field names) in English.

Workflow

Step 0: Configure API Key

When the user provides an API key (e.g., "我的 key 是 msk_xxx", "帮我配置 API Key", "set api key to msk_xxx", "这是key: msk_xxx"), write it into config.json:

  1. Check if config.json exists in the skill root directory. If not, read config.json.example as a template and create config.json from it.
  2. Read the current config.json and parse it as JSON.
  3. Set the api_key field to the key the user provided.
  4. Write the updated JSON back to config.json (use 2-space indentation for readability).
  5. Confirm to the user: "API Key 已配置成功。"

The user gets their API key by applying at https://x.lizhisec.com. If they ask where to get one, point them there.

Step 1: Check prerequisites

Before running the analysis, verify these conditions are met:

  1. Node.js 22+ is available. Check with node --version. If not available, tell the user to install Node.js 22+.
  2. config.json exists with a valid api_key. If missing, guide the user through Step 0 above.

Step 2: Run the analysis script

npx tsx scripts/analyze.ts <path/to/email.eml>

The script will:

  1. Upload the .eml file to the analysis platform
  2. Poll for results every 3 seconds until analysis completes
  3. Display a formatted security analysis report

Step 3: Interpret results for the user

The report output is self-contained and human-readable. Key elements to help the user understand:

  • 风险等级 (Risk Tier): risky (dangerous), clean (safe), or other levels
  • 置信度 (Confidence): AI confidence percentage
  • 身份认证 (Authentication): SPF, DKIM, DMARC results
  • 域名信息 (Domain Profile): Registration date, ICP record - recently registered domains are suspicious
  • AI 综合分析 (AI Analysis): Detailed threat assessment covering identity verification, behavioral patterns, intent recognition, and comprehensive judgment

If the email is flagged as risky, emphasize the recommended actions:

  • Isolate the email immediately
  • Block the sender domain
  • Do NOT open attachments or enter passwords
  • Preserve the .eml file for forensics

Error handling

Common errors and how to address them:

ErrorCauseSolution
------------------------
API key not configuredMissing or empty config.jsonGuide user to set up config.json
Upload failed (HTTP 4xx)Invalid API keyRe-apply at https://x.lizhisec.com
Analysis failedEmail could not be processedCheck if the .eml file is malformed
Analysis timeoutPlatform overloadedWait and retry later
File not foundPath typoVerify the .eml file path

What NOT to do

  • Do NOT read raw JSON from the API response and present it directly to users
  • Do NOT hardcode any API keys in responses visible to the user
  • Do NOT modify config.json unless the user explicitly asked you to configure their API key (see Step 0)
  • Do NOT expose the API_BASE_URL configuration to users (internal detail)

版本历史

共 1 个版本

  • v1.0.0 从ClawHub迁移发布 当前
    2026-06-07 12:31 安全 安全

安全检测

腾讯云安全 (Keen)

安全,无风险
查看报告

腾讯云安全 (Sanbu)

安全,无风险
查看报告

🔗 相关推荐

design-media

agnes-image-gen

user_15292d5a
使用 Agnes AI 的图片生成模型生成图片,支持文生图(agnes-image-2.1-flash)和图生图(agnes-image-2.0-flash)。支持自定义 API Key,用户可使用自己的 Agnes Key。优化重点:降低
★ 1 📥 241
it-ops-security

Free Ride - Unlimited free AI

shaivpidadi
管理OpenClaw的OpenRouter免费AI模型,自动按质量排名模型,配置速率限制备用方案,并更新opencla...
★ 472 📥 78,680
it-ops-security

MoltGuard - Security & Antivirus & Guardrails

thomaslwang
MoltGuard — OpenClaw 安全守卫,由 OpenGuardrails 提供。安装后可防止您和您的用户受到提示注入、数据泄露及恶意行为的侵害。
★ 116 📥 31,033