by 安全扫描
OpenClaw
可疑
medium confidenceNULL
评估建议
Treat this as a suspicious-but-plausible technical guide. Before installing or enabling it: (1) Do NOT expose your private signing key (AGENT_SIGNING_KEY) to a skill unless you fully trust its source; prefer using local signing tools or hardware wallets. (2) Ask the publisher for source code or a homepage and verify the GreenHelix sandbox URL and owner identity. (3) Inspect the full SKILL.md for any examples that read other env vars or system files (exchange API keys, SSH keys, ~/.ssh, etc.) tha...详细分析 ▾
ℹ 用途与能力
The skill's name and description match a framework for multi-bot arbitrage and coordination; requesting an agent signing key (Ed25519) is plausibly relevant for signed messages / identity in a coordination protocol. However, the skill is instruction-only (no code) yet declares a required runtime credential — unusual for a guide that also states the GreenHelix sandbox needs no API key.
⚠ 指令范围
SKILL.md promises working Python and curl examples and explicitly lists AGENT_SIGNING_KEY as a referenced credential. Because this is an instruction-only skill with the primary credential provided to the agent, there's a risk the instructions will direct the agent to use the private signing key at runtime (sign requests, produce claims, or broadcast signed messages). The file also mentions exchange APIs and escrow flows — if example code references other API keys or instructs the agent to access system files or transmit keys, that would be out-of-scope for a simple guide. The visible portion does not show explicit file reads, but the presence of a required private key is a red flag for sensitive runtime actions.
✓ 安装机制
No install spec and no bundled code — the skill is instruction-only, which minimizes automatic code being written to disk or executed. This is the lowest-risk install footprint.
⚠ 凭证需求
The only declared required credential is AGENT_SIGNING_KEY (a private Ed25519 key). Requiring a private signing key at agent runtime is sensitive and may be disproportionate for a read-only educational guide. If the intent is only to show how to sign locally, the skill should not require the key to be provided to the agent. Additionally, the guide references interacting with exchanges and escrow but does not declare other credentials (exchange API keys) — if examples assume those keys exist, the skill omits required env vars or expects the agent to request/access them without declaration.
✓ 持久化与权限
always is false and there is no install that modifies agent configuration. Autonomous invocation is allowed (platform default) but not combined with always:true or extra privileges, so there is no elevated persistence requested by this skill.
安全有层次,运行前请审查代码。
运行时依赖
无特殊依赖
版本
latestv1.3.12026/4/11
NULL
● 无害
安装命令
点击复制官方npx clawhub@latest install greenhelix-bot-arbitrage-framework
镜像加速npx clawhub@latest install greenhelix-bot-arbitrage-framework --registry https://cn.longxiaskill.com