by 安全扫描
OpenClaw
安全
medium confidenceThe skill is internally consistent: it is an instruction-only wrapper around an auth0-tv CLI that accesses third‑party services using user-authenticated tokens — but the package/source provenance is unverified, so exercise caution before installing.
评估建议
This skill appears to do what it claims (call a local auth0-tv CLI to act on behalf of authenticated users). Before installing: 1) Verify the npm package source and publisher on the npm registry (look for homepage, repository, publisher identity, and recent versions); 2) Inspect the auth0-tv binary or its upstream repository if possible to confirm where it stores tokens and what it can do; 3) Be cautious about granting autonomous agents the ability to invoke this skill — destructive actions requ...详细分析 ▾
✓ 用途与能力
The name/description (Auth0 Token Vault, Gmail/Slack/Calendar access via Auth0) matches the runtime instructions and required binary (auth0-tv). The npm install (auth0-token-vault-cli) that provides auth0-tv is coherent with the stated purpose.
✓ 指令范围
SKILL.md confines agent behavior to invoking the auth0-tv CLI with --json and requires human-in-the-loop for login/connect flows. It specifies using --confirm for destructive actions and only mentions reading files explicitly for message body input. It does not instruct the agent to read unrelated files or env vars beyond an optional AUTH0_TV_OUTPUT setting.
ℹ 安装机制
Install is via an npm package (auth0-token-vault-cli), which is a typical distribution method for a CLI. This is moderate risk versus a vetted package manager tap or source, especially because the skill metadata has no homepage/source URL to verify the package origin. Also note the _meta.json version differs from the registry metadata (0.2.3 vs 0.4.0), a minor inconsistency worth checking.
ℹ 凭证需求
The skill declares no required env vars or credentials, which aligns with being a wrapper around a local CLI. However, auth0-tv will use locally stored Auth0/OAuth tokens (and may persist credentials locally), so the agent effectively gains the ability to act with those tokens. The skill does not declare where tokens are stored; this is proportionate to the purpose but important for user awareness.
ℹ 持久化与权限
The skill is not always-enabled and is user-invocable. Autonomous invocation is allowed (platform default). Because the CLI can perform actions on connected accounts, autonomous invocation increases blast radius if the agent is permitted to run destructive commands with --confirm; SKILL.md advises human intervention for login/connect and requires --confirm for destructive actions, which mitigates risk but does not eliminate it.
安全有层次,运行前请审查代码。
运行时依赖
OSmacOS · Linux
安装命令
点击复制官方npx clawhub@latest install auth0-token-vault
镜像加速npx clawhub@latest install auth0-token-vault --registry https://cn.longxiaskill.com 镜像可用
本土化适配说明
Auth0 Token Vault — 实用工具 安装说明: 安装命令:["openclaw skills install auth0-token-vault","npx clawhub@latest install auth0-token-vault"]