首页龙虾技能列表 › Appian Unnamedobjects — 实用工具

Appian Unnamedobjects — 实用工具

v1.2.0

应用 objects missing description. Exports 应用, scans all object XML files, 和 reports name 和 UUID 用于 each objec...

0· 3·0 当前·0 累计
by @solarspiker·MIT-0
下载技能包
License
MIT-0
最后更新
2026/4/14
安全扫描
VirusTotal
无害
查看报告
OpenClaw
安全
high confidence
The skill's code, runtime instructions, and required credentials are consistent with its stated purpose of exporting an Appian application and reporting objects missing descriptions.
评估建议
This skill appears coherent with its description, but consider the following before installing: 1) The skill needs an Appian API key and base URL — ensure the API key has the minimum scope required and points to the expected Appian instance (internal vs public). 2) The script writes ZIP exports to ~/appian-exports and may create a copy in the current working directory (container runs); if that contains sensitive artifacts, run in a restricted/sandboxed environment or clean up after use. 3) The s...
详细分析 ▾
用途与能力
The skill claims to export an Appian application and scan object XML files; it requires APPIAN_BASE_URL and APPIAN_API_KEY, calls Appian deployment APIs, downloads the package ZIP, and parses XML — all of which are necessary and appropriate for the stated task.
指令范围
Runtime instructions and SKILL.md limit actions to exporting, parsing, and reporting. The skill insists credentials are pre-injected and asks the agent to relay output verbatim. The code will fall back to reading appian.json in CWD if env vars are absent and writes ZIP files to ~/appian-exports (and mirrors to CWD/appian-exports in containers) — this file access is reasonable for export handling but is worth noting because it reads/writes local files.
安装机制
No install spec is present and included code is a single Node.js script; nothing is downloaded from arbitrary URLs during install. This is low-risk from an install mechanism perspective.
凭证需求
The only required environment variables are APPIAN_BASE_URL and APPIAN_API_KEY, which are directly needed to call the Appian deployment/export API. No unrelated credentials or broad environment access are requested. The code does fall back to appian.json if env vars are missing.
持久化与权限
The skill does write export ZIP files to the user's home and (when in container) to CWD/appian-exports, but it does not request always:true, does not modify other skills or global config, and does not require permanent elevated privileges.
scripts/index.js:34
Environment variable access combined with network send.
scripts/index.js:21
File read combined with network send (possible exfiltration).
安全有层次,运行前请审查代码。

License

MIT-0

可自由使用、修改和再分发,无需署名。

运行时依赖

无特殊依赖

版本

latestv1.2.02026/4/14

- Improved internal implementation in scripts/index.js; no user-facing changes. - All functionality and usage remain the same.

● 无害

安装命令 点击复制

官方npx clawhub@latest install appian-unnamedobjects
镜像加速npx clawhub@latest install appian-unnamedobjects --registry https://cn.clawhub-mirror.com

技能文档

Exports an Appian application and scans every object XML file for objects whose tag is empty or missing. Reports type, name, and UUID for each offending object.

Usage

node {baseDir}/scripts/index.js

示例

node {baseDir}/scripts/index.js _a-0000de15-1f1c-8000-5130-010000010000_12559

IMPORTANT: credentials pre-configured

APPIAN_BASE_URL and APPIAN_API_KEY are already injected by OpenClaw at runtime. Never ask the user for credentials before running this skill. Just execute it with the UUID the user provided.

如何 users 可以 ask 对于

  • "查找 Appian objects 没有 descriptions 在...中 application "
  • "哪个 Appian objects undocumented 在...中 "
  • "Audit Appian missing descriptions 在...中 "
  • "Check Appian documentation coverage 对于 "

什么 做

  • Calls Appian v2 Deployment Management API 到 导出 application 作为 ZIP.
  • Parses ZIP 在...中-process (否 shell extraction) 使用 节点.js built-ins — one 对象 per XML file, 类型 从 directory name.
  • Iterates every XML file outside META-INF/.
  • 对于 每个 对象, checks whether <:description> absent 或 blank.
  • Prints grouped 举报 的 offending objects.

之后 running

Relay 满 skill 输出 到 用户 exactly 作为 printed — 做 不 summarize, paraphrase, 或 omit 任何 lines.

The output already contains every object type, name, and UUID in a compact readable format. Your job is to forward it verbatim, then offer to help further. Do not replace the list with a vague count like "15 objects were found" — the user needs the actual names and details.

External endpoints

  • POST ${APPIAN_BASE_URL}/deployments — triggers 导出
  • 获取 ${APPIAN_BASE_URL}/deployments/{uuid} — polls 对于 completion
  • 获取 — downloads resulting ZIP

Security

  • Credentials (APPIAN_BASE_URL, APPIAN_API_KEY) 读取 从 environment variables (injected 由 OpenClaw 在 runtime). 如果 不 injected, falls back 到 appian.json 在...中 current working directory.
  • ZIP written 到 ~/appian-exports/ 和 mirrored 到 CWD/appian-exports/ 当...时 running 在...中 container.
  • 否 data sent 到 任何 第三个-party 服务.
  • 否 shell commands executed; ZIP extraction uses 节点.js built-在...中 zlib.
数据来源:ClawHub ↗ · 中文优化:龙虾技能库
OpenClaw 技能定制 / 插件定制 / 私有工作流定制

免费技能或插件可能存在安全风险,如需更匹配、更安全的方案,建议联系付费定制

了解定制服务