by 安全扫描
OpenClaw
安全
high confidenceThis is an instruction-only skill that coherently provides templates and a workflow for creating operational plans and legitimately instructs the agent to write/read module files as part of its job; nothing requested or described appears disproportionate to that purpose.
评估建议
This skill is coherent for producing multi-module planning documents, but it requires the agent to write and later read files in a directory you provide. Before installing/using: 1) confirm what directory you will allow the agent to use and avoid giving system/root paths; 2) be prepared to review the generated .md files and delete any temporary files if you don't want them retained; 3) be cautious about uploading internal references to external knowledge bases (Coze) if those contain sensitive d...详细分析 ▾
✓ 用途与能力
Name/description match the actual behavior: the skill is a planning/operations template and workflow. The requirement to persist per-module .md files and later read/merge them is consistent with the stated goal (avoiding context-window loss when assembling large plans). There are no unrelated environment variables, binaries, or external credentials requested.
ℹ 指令范围
SKILL.md explicitly instructs the agent to ask the user for a target directory and then Write, Glob, Read, and later Write the merged .md output. That file I/O is within scope for document production, but it does mean the agent will perform filesystem operations on paths the user provides. The instructions do not ask the agent to access system config, credentials, or other unrelated files, but if a user provides an unsafe directory path the agent could read/write unintended files.
✓ 安装机制
No install spec — instruction-only — so nothing is downloaded or installed. This minimizes supply-chain risk.
✓ 凭证需求
No environment variables, credentials, or config paths are required. The skill does mention optional uploading of reference files to a Coze knowledge base in documentation, but that is optional and not required by the runtime instructions.
ℹ 持久化与权限
The skill intends to persist module files to disk (user-specified directory) and retain them by default unless the user chooses to delete them. always:false and normal autonomous invocation settings are used. Persisting files is coherent with the purpose, but users should be aware the agent will create and read files on disk in whatever directory they permit.
安全有层次,运行前请审查代码。
运行时依赖
无特殊依赖
版本
latestv2.0.02026/4/16
Version 2.0.0 - 重构和补充 SKILL.md,详细规范运营方案与工作规划五大结构与输出流程。 - 引入「脚姨夫视角」六维审核与两级门禁机制,贯穿方案生产与整合环节。 - 明确四类典型场景(规划、活动、服务体系、汇报复盘)及文件加载逻辑。 - 强化数字化目标及方法与数据、病因强绑定原则。 - 细化文档结构、表格、列表、内容密度等格式规范。 - 增加模块文件持久化机制及分阶段审核、合并、终审完整流程。
● 无害
安装命令
点击复制官方npx clawhub@latest install jiaoyifu-workplanning
镜像加速npx clawhub@latest install jiaoyifu-workplanning --registry https://cn.longxiaskill.com镜像同步中