安全扫描
OpenClaw
安全
high confidence该技能是一个仅提供指令的设计助手,用于选择离线并发策略,其请求的范围和操作与此目的一致。
评估建议
This is an instruction-only de签名/审计 技能 that 应用ears coherent for selecting offline concurrency strategies. It does not 请求 secrets or 安装 code, so direct technical risk from 安装ation is low. However: (1) follow its DB 模式 or 迁移 examples only after code review and 备份s — creating lock tables or changing version columns affects production data; (2) if you allow the 代理 to make edits, restrict write 权限s and review all changes before committing; (3) do not provide any 凭证s or 环境 variables to the 技能; (4) tes...详细分析 ▾
✓ 用途与能力
Name, description, and required 输入s (codebase or 系统 description) match the instructions: selecting between optimistic/pessimistic/coarse-grAIned/implicit locks for long-运行ning edits. There are no unrelated 环境 variables, binaries, or 凭证s 请求ed.
ℹ 指令范围
技能.md focuses on reading the codebase and producing a concurrency decision record; it also includes concrete 模式 and 迁移 examples (SQL, lock table de签名) and 仓库-decorator patterns. This scope is 应用ropriate for a de签名/审计 技能 but those DB/模式 changes and 仓库 modifications are high-impact operations — the 技能 does not itself include code, so any 模式/应用 changes would come from an engineer following its recommendations. Review and test 迁移s/changes before 应用lying to production.
✓ 安装机制
No 安装 spec and no code files — instruction-only. This is the lowest-risk 安装 性能分析 (nothing fetched or written by the 技能 automatically).
✓ 凭证需求
该 skill 不请求任何环境变量、凭据或配置路径。说明中提到的仅包括读取应用代码和数据库 schema(属预期行为),不存在过度访问密钥或索取无关凭据的情况。
✓ 持久化与权限
always is false and the 技能 does not 请求 persistent 系统 presence. It requires typical 代理 工具s (Read, Grep, Edit, Write) 应用ropriate for analyzing and documenting a codebase. Note: because it can Edit/Write, you should limit 代理 权限s and review any edits before 应用lying.
安全有层次,运行前请审查代码。
运行时依赖
无特殊依赖
版本
latestv1.0.02026/4/21
● 无害
安装命令
点击复制官方npx clawhub@latest install bookforge-offline-concurrency-strategy-selector
镜像加速npx clawhub@latest install bookforge-offline-concurrency-strategy-selector --registry https://cn.longxiaskill.com
技能文档
--- name: offline-concurrency-strategy-selector description: "用于设计跨多个系统事务的长时编辑并发控制:用户打开记录,编辑数分钟或数小时后再保存。在乐观锁(version 列,提交时碰撞检测)与悲观锁(记录签出,加载时冲突预防)之间选择,并决定是否加入 Coarse-Grained Lock(聚合根锁,支持多对象编辑)和 Implicit Lock(框架强制锁,防止空档)。覆盖:防丢更新、并发编辑碰撞检测、离线锁策略、长事务并发、version 列设计、锁表设计、锁超时策略、聚合锁、编辑并发、锁类型选择(exclusive-read / exclusive-write / read-write)。诊断误配:用户思考期间持有 DB 级锁、隐式锁空档、乐观/悲观在重叠数据混用、基于 timestamp 的版本陷阱。" version: 1.0.0 homepage: https://github.com/bookforge-ai/bookforge-skills/tree/main/books/patterns-of-enterprise-application-architecture/skills/offline-concurrency-strategy-selector metadata: {"openclaw":{"emoji":"🔒","homepage":"https://github.com/bookforge-ai/bookforge-skills"}} status: draft source-books:
- id: patterns-of-enterprise-application-architecture
- concurrency
- locking
- transactions
- design-patterns
- data-integrity
- offline-lock
- optimistic-concurrency
- pessimistic-concurrency
- type: codebase
- type: user-description
- Read
- Grep
- Edit
- Write
- Glob