by 安全扫描
OpenClaw
安全
high confidenceNULL
评估建议
This skill appears to do what it says: guide DI decisions and generate or refactor Go wiring. Before enabling it, be aware it will read and (if invoked with write access) may modify your codebase and run go commands. It does not request credentials or perform network downloads as part of an install, but it is allowed to fetch documentation/web resources. Grant it only the repository/file access you are comfortable with and avoid supplying secrets or broad system credentials. If you want to be ex...详细分析 ▾
✓ 用途与能力
The name/description match the SKILL.md and reference files. Required binary (go) and the listed allowed tools (reading/writing code, running go commands, fetching docs) are reasonable for a DI guidance and code‑generation/refactor assistant.
ℹ 指令范围
The SKILL.md focuses on architecture guidance, example code, and automated/refactor modes that will analyze project source (it explicitly mentions using parallel sub-agents to find globals/init() and map dependencies). That implies the agent will read and edit repository files and run go commands — which is expected for this skill, but you should expect it to access your codebase files when invoked.
✓ 安装机制
Instruction-only skill with no install steps and no external downloads; lowest-risk install profile.
✓ 凭证需求
No environment variables, credentials, or config paths are requested. The skill's allowed tools permit repository/file access and web fetches; those are appropriate for analyzing and generating Go code.
✓ 持久化与权限
always is false (not force-included). disable-model-invocation is false (normal — agent may call it autonomously). The skill does not request persistent system-wide privileges or modify other skills' configs.
安全有层次,运行前请审查代码。
运行时依赖
无特殊依赖
版本
latestv1.1.22026/3/23
NULL
● 无害
安装命令
点击复制官方npx clawhub@latest install golang-dependency-injection
镜像加速npx clawhub@latest install golang-dependency-injection --registry https://cn.longxiaskill.com