by 安全扫描
OpenClaw
可疑
high confidenceThe skill generally matches its stated purpose (storing credentials to Bitwarden via the CLI) but has several inconsistencies and insecure behaviors (undeclared required env var, undeclared dependency, and passing secrets as CLI arguments) that should be addressed before trusting it.
评估建议
This skill appears to do what it says (store credentials to your Bitwarden vault) but it has sloppy/insecure details you should fix or consider before using:
- Do not paste BW_SESSION or master passwords into chat. Prefer unlocking bw in your terminal and exporting BW_SESSION in that shell session rather than sending the token to the agent or pasting it into messages. Confirm the platform will not log or transmit your environment values.
- The script requires jq (used to build JSON) but SKILL....详细分析 ▾
ℹ 用途与能力
The name/description (store/retrieve credentials in Bitwarden via CLI) matches the included script and instructions: both call the Bitwarden CLI to create items. However, registry metadata lists no required env vars while the SKILL.md and script require a BW_SESSION token — this mismatch should be corrected.
⚠ 指令范围
The SKILL.md and script confine actions to unlocking the Bitwarden vault and calling bw create item, which is in-scope. Concerns: (1) the script expects jq but SKILL.md does not list jq as a requirement; (2) the script accepts the secret/password as a command-line argument (exposed via process listing); (3) SKILL.md suggests the user might 'provide' the BW_SESSION in two ways, but does not warn strongly that pasting the BW_SESSION into chat or otherwise transmitting it externally will expose a live session token.
ℹ 安装机制
There is no install spec (instruction-only), which reduces install-time risk. SKILL.md notes Bitwarden CLI must be installed (brew install bitwarden-cli). It does not mention jq, which the script requires. No remote downloads or archive extraction are present.
⚠ 凭证需求
Requiring BW_SESSION (a session token for an unlocked vault) is proportionate to the purpose, but the registry metadata does not declare this required environment variable or a primary credential. The script's design asks for sensitive inputs in ways that increase exposure risk (BW_SESSION might be copied/pasted into chat or logs; passwords are passed as CLI args).
✓ 持久化与权限
The skill is not always-enabled, is user-invocable, and does not request elevated or persistent platform privileges. It does not modify other skills or system-wide config.
安全有层次,运行前请审查代码。
运行时依赖
无特殊依赖
版本
latestv1.0.02026/3/26
Initial release: store/retrieve credentials in Bitwarden via CLI
● 无害
安装命令 点击复制
官方npx clawhub@latest install bitwarden-credential
镜像加速npx clawhub@latest install bitwarden-credential --registry https://cn.clawhub-mirror.com
技能文档
Store credentials (passwords, API keys, OAuth tokens, etc.) in Bitwarden via the CLI.
Workflow
Step 1: Ensure Vault is Unlocked
The user must unlock their Bitwarden vault once per session in their terminal:
bw unlock
After unlocking, the user gets a session key. There are two ways to provide it:
Option A — Export the session (user does in their terminal):
export BW_SESSION=""
Option B — Pass session directly to script:
BW_SESSION="" ./bitwarden-credential.sh [notes]
Step 2: Store a Credential
Once vault is unlocked, provide me with:
- Name — identifier for this credential (e.g., "GitHub API Key", "MiniMax API")
- Username — often the client_id or key name
- Password/Secret — the actual secret value
- Notes (optional) — extra context (scope, grant_type, etc.)
Example user message:
"Save to Bitwarden: name=Grafana, username=admin, password=xyz123, notes=prod server"
Step 3: Execute
Use the bundled script or run directly:
# With BW_SESSION set
./scripts/bitwarden-credential.sh "" "" "" "[notes]"# Or via bw CLI directly
echo -n '{"name":"...","login":{"username":"...","password":"..."},"type":1}' | bw create item
Notes
- Bitwarden CLI must be installed:
brew install bitwarden-cli - API key auth: Use
bw login --apikeywith client_id + client_secret, but vault still requires master password to unlock - I cannot unlock the vault for you — the master password never leaves your terminal
- Session token (
BW_SESSION) is session-scoped; it expires when the vault locks again
数据来源:ClawHub ↗ · 中文优化:龙虾技能库
OpenClaw 技能定制 / 插件定制 / 私有工作流定制
免费技能或插件可能存在安全风险,如需更匹配、更安全的方案,建议联系付费定制