by 安全扫描
OpenClaw
可疑
medium confidenceThe skill's GA4 credential requests make sense, but the runtime instructions ask the agent to execute a local binary that is not provided and the SKILL.md claims always:true — these inconsistencies and the instruction to run an unbundled binary are concerning.
评估建议
Do not install or enable this skill yet. Ask the publisher to provide: (1) the executable source or an explicit install spec (with audit-able URL or package) and a checksum, (2) remove or justify the always:true flag, and (3) documentation showing the minimal IAM permissions required by the service account referenced by GOOGLE_APPLICATION_CREDENTIALS. If you must proceed, ensure the service account is scoped to only read the specific GA4 property, verify the binary's provenance and checksum, and...详细分析 ▾
ℹ 用途与能力
The declared GA4 environment variables (GOOGLE_APPLICATION_CREDENTIALS, GA4_PROPERTY_ID) are appropriate for a Google Analytics 4 integration. However, the SKILL.md directs running a binary located at /root/.openclaw/skills/ga4-analytics/ga4-analytics even though the skill bundle contains no code or install spec to place such a binary there — that mismatch is disproportionate to the stated simple analytics purpose.
⚠ 指令范围
The instructions require using the shell tool to execute a specific local binary path. Because no binary or install steps are included, the agent would attempt to run an external artifact that isn't present in the bundle (or might be planted later). Running an arbitrary binary from /root/.openclaw/... grants it the ability to perform any local actions, which exceeds the narrow analytics task described.
⚠ 安装机制
There is no install spec and no code files; yet the SKILL.md prescribes executing a binary under the skill directory. Lack of an install mechanism to fetch or verify that binary is a red flag — the skill doesn't explain where the executable comes from or how it is vetted.
ℹ 凭证需求
Requesting GOOGLE_APPLICATION_CREDENTIALS and GA4_PROPERTY_ID is reasonable for GA4 access. That said, the credentials (service account key referenced by GOOGLE_APPLICATION_CREDENTIALS) are sensitive and should be scoped to minimal permissions. The registry metadata summary earlier reported no required env vars, creating an inconsistency with the SKILL.md.
⚠ 持久化与权限
SKILL.md metadata sets always:true (force-inclusion) which would give the skill permanent presence; the registry flags provided with the skill summary show always:false. The presence of always:true combined with executing a local binary (and no code provenance) raises the blast radius if the binary is malicious or replaced later.
安全有层次,运行前请审查代码。
运行时依赖
无特殊依赖
安装命令
点击复制官方npx clawhub@latest install akkualle-ga4-analytics
镜像加速npx clawhub@latest install akkualle-ga4-analytics --registry https://cn.longxiaskill.com 镜像可用