by 安全扫描
OpenClaw
可疑
medium confidenceNULL
评估建议
Before installing or running this skill, confirm these items: (1) The skill will read and edit files under /home/grey and may touch /etc/mihomo and run /usr/local/bin/mihomo — only allow it on a host you control or in a sandbox. (2) It appears to expect deployment and git push capabilities (Cloudflare wrangler, GitHub/SSH) but declares no credentials; ask the author which environment variables or secrets are required and how they should be provided (prefer use of a secrets manager rather than em...详细分析 ▾
⚠ 用途与能力
The skill's purpose (update repo routing rules, regenerate worker, deploy, and verify rules.xiannai.me) matches what the SKILL.md instructs, but the skill does not declare any required credentials or environment variables even though worker deploys and git pushes normally require Cloudflare/GitHub/ssh tokens. The compatibility notes also mention wrangler and 1Password CLI, implying secret access. The absence of declared credentials is an incoherence.
⚠ 指令范围
Runtime instructions explicitly read and edit files under /home/grey/mihomo-fullstack-deploy, may validate or sync /etc/mihomo, run a local mihomo binary, redeploy a worker and call external endpoints (rules.xiannai.me). These operations require filesystem and possibly service privileges; the skill does not instruct reading unrelated user files, but it does assume the agent can modify system-level config and perform network deploys, which expands its scope beyond a simple formatter.
✓ 安装机制
This is an instruction-only skill with no install spec or code files. That keeps install risk low — nothing is downloaded or written by an included installer.
⚠ 凭证需求
The skill declares no required env vars or primary credential, yet the workflow requires actions that normally need credentials (Cloudflare wrangler deploy, git push to canonical repo, possible use of 1Password to fetch secrets). The SKILL.md even warns not to reveal Cloudflare/GitHub tokens, implying they exist. Not declaring these environment/credential needs is disproportionate and opaque.
ℹ 持久化与权限
always:false and normal autonomous invocation are fine. However the skill’s actions include potentially modifying /etc/mihomo and restarting or running local binaries — operations that require elevated filesystem/service privileges on the host. While not a policy/privilege misconfiguration in metadata, this increases operational risk and should be considered before granting the agent those capabilities.
安全有层次,运行前请审查代码。
运行时依赖
无特殊依赖
版本
latestv1.0.02026/4/1
NULL
● 可疑
安装命令
点击复制官方npx clawhub@latest install mihomo-subscription-route-publisher
镜像加速npx clawhub@latest install mihomo-subscription-route-publisher --registry https://cn.longxiaskill.com镜像同步中