by 安全扫描
OpenClaw
安全
high confidenceThe skill is a simple, instruction-only informational skill about UC Berkeley and does not request credentials, install code, or access system resources — its declared purpose matches its content.
评估建议
From a security perspective this skill is coherent and low-risk: it only contains static informational text about UC Berkeley and asks for no credentials or installs. Before relying on its facts, verify important numbers/dates against official sources (school website, published reports), since the SKILL.md provides no citations. If you prefer stricter control, you can disable autonomous invocation for this skill in your agent settings.详细分析 ▾
✓ 用途与能力
The name and description claim to provide information about UC Berkeley; the SKILL.md contains only that content and the skill declares no unrelated requirements (no env vars, binaries, or config paths).
✓ 指令范围
SKILL.md is static content (summary, facts, tables). It does not instruct the agent to read files, call external endpoints, access environment variables, or transmit data outside the agent.
✓ 安装机制
No install specification and no code files are present (instruction-only), so nothing is written to disk or fetched during install.
✓ 凭证需求
The skill requires no environment variables, credentials, or config paths — there is no disproportionate access request.
✓ 持久化与权限
always is false (not force-included) and the skill does not request persistent or elevated privileges or modification of other skills/configuration; autonomous invocation is allowed by platform default but not unusual here.
安全有层次,运行前请审查代码。
运行时依赖
无特殊依赖
安装命令
点击复制官方npx clawhub@latest install berkeley
镜像加速npx clawhub@latest install berkeley --registry https://cn.longxiaskill.com