meituan-union-coupon-skill

Coupon claiming and reminders are coherent with the stated purpose, but the artifacts also implement SMS account login, user_token/device_token storage, token validation, auth-log diagnostics, and self-update behavior while the public metadata marks high_sensitive as false and does not clearly foreground those sensitive capabilities.

The trigger set is broad and includes generic shopping phrases, and the skill instructs the agent to keep technical operations silent while initiating flows that can request a phone number, SMS code, token checks, and reminder setup. Consent text exists, but activation and disclosure are under-scoped for the sensitivity.

The package is a normal skill artifact with local scripts, but SKILL.md includes runtime version checks and user-approved update commands via external skill tools, which adds supply-chain risk outside the narrow coupon workflow.

The skill writes authentication state under the user's home directory, logs auth and coupon activity under temp storage, creates long-term memory entries, can schedule recurring reminders, and sends phone/token/device data to remote Meituan endpoints. Some of this is purpose-aligned, but disabled TLS verification on token verification and SMS sending is disproportionate and unsafe.

Persistent user_token and device_token handling is central to the implementation; device_token intentionally survives logout, and Doctor diagnostics can read raw local tokens and decrypted logs. That is high-impact account state for a coupon skill and needs stronger scoping and controls.