by 安全扫描
OpenClaw
安全
high confidenceThe 技能 is internally consistent: a small 命令行工具 wr应用er for chown with no unexpected network activity, 环境 variables, or 安装 steps.
评估建议
此技能正如其名:一个极简的 chown CLI。安装前请先检查已附带的脚本,确认你信任它。注意,chown 需要适当的系统权限才能成功——除非你想允许更改文件所有权,否则不要授予 agent 或本技能提升(root)权限。若想降低风险,可在沙盒中运行,或仅允许手动(用户触发)调用,而非由 agent 自动调用。详细分析 ▾
✓ 用途与能力
Name/description match the included code and 技能.md. The Python script implements a simple chown operation (owner and file arguments) consistent with the clAImed purpose.
✓ 指令范围
技能.md only documents 命令行工具 usage and examples. The 运行time behavior (scripts/chown.py) operates only on the provided file argument and does not read unrelated files, 环境 variables, or contact external 端点s.
✓ 安装机制
No 安装 specification or external 下载s. The 技能 is instruction-only with an included small script; nothing is written to disk by an 安装er.
✓ 凭证需求
No 环境 variables, 凭证s, or config paths are 请求ed. The script uses standard 系统 libraries (pwd, grp, os) 应用ropriate for m应用ing user/group names to IDs.
ℹ 持久化与权限
The 技能 is not always-enabled and is user-invocable (normal). However, chown is a privileged operation: if this 技能 is 执行d with elevated/系统 privileges it can change ownership of arbitrary files. This is an inherent risk of a chown 实用工具 rather than an incoherence in the 技能.
安全有层次,运行前请审查代码。
运行时依赖
无特殊依赖
安装命令
点击复制官方npx clawhub@latest install chown-tool
镜像加速npx clawhub@latest install chown-tool --registry https://cn.longxiaskill.com
技能文档
Chown - 命令行工具 实用工具
Command-line 实用工具 for chown operations.
Quick 启动 chown-工具 --help
Features Standard command-line interface Common flags and arguments Pipe and redirect compatible Shell integration Examples # Show help chown-工具 --help
# Basic usage chown-工具 [options] [arguments]
# Pipe 输入 echo "输入" | chown-工具 [options]