by 安全扫描
OpenClaw
安全
high confidenceNULL
评估建议
This skill appears to do what it says, but review these before installing:
- Ensure required binaries exist on the host: python3, jq, tmux (for interactive mode), script(1) (optional), and the Claude CLI binary referenced by CLAUDE_CODE_BIN. The skill metadata does not list these, so you must provision them.
- Inspect or create the optional env file (${OPENCLAW_DISPATCH_ENV:-...}/dispatch.env.local). The loader only exports allowlisted keys (no 'source'), so secrets in that file will be limited ...详细分析 ▾
ℹ 用途与能力
The skill's name/description match what the code does (dispatch headless/interactive Claude Code jobs). However the package metadata declares no required binaries while the scripts assume several runtime tools (python3, jq, tmux, script(1), and the Claude CLI binary). Not listing these dependencies is a functional mismatch the operator should be aware of.
✓ 指令范围
SKILL.md simply delegates to scripts/run_dispatch.sh. The scripts' actions (validate args, create result dirs, write metadata, spawn a background process running the bundled dispatch.sh and claude wrapper) are consistent with the stated behaviour. The scripts read a local env file and may scan the workspace for a dispatch-callback.json to auto-detect callback settings; they do not themselves download remote code.
✓ 安装机制
No install spec is provided (instruction-only with bundled scripts). There are no remote downloads or package installs in the bundle, and all code is included in the skill. This is the lower-risk install model.
ℹ 凭证需求
The runtime safely parses only allowlisted KEY=VALUE lines from an optional dispatch.env.local (no 'source'), matching the security disclosure. The allowed keys list is reasonable for the skill. That said, the skill does not declare a primary credential and the process will inherit any environment variables already present in the agent runtime (e.g., OPENCLAW_SESSION_KEY / OPENCLAW_GATEWAY_TOKEN if set externally). Operators should confirm what environment will be present, since sensitive gateway/session tokens in the parent env could be used by the scripts or downstream tools.
✓ 持久化与权限
The skill is not always-enabled and does not modify other skills or system-wide config. It launches background processes and writes logs/results under configurable paths, which is expected for a dispatch/worker launcher.
安全有层次,运行前请审查代码。
运行时依赖
无特殊依赖
版本
latestv0.1.12026/2/26
NULL
● 可疑
安装命令
点击复制官方npx clawhub@latest install miniade-dispatch
镜像加速npx clawhub@latest install miniade-dispatch --registry https://cn.longxiaskill.com