📦 Model Switchboard — 模型切换器
v3.0.0通过验证角色、自动加载备份、阻止不安全更改,并支持 CLI 或 Canvas UI 管理,安全配置 OpenClaw AI 模型。
0· 325·0 当前·0 累计
by @frank-bot07下载技能包
最后更新
2026/2/26
安全扫描
OpenClaw
安全
medium confidence该技能的文件、运行时指令及所需权限与其声明目的(安全模型管理)一致——审计中报告了若干高危严重问题,但变更日志称已修复;由于提交的部分文件被截断,我无法完全验证所有修复。
评估建议
This skill appears coherent and appropriate for managing OpenClaw models: it only needs access to your OpenClaw config and any provider API keys you already use, and it implements validation, backups and a UI. However, the included security audit flagged two HIGH issues (XSS in the UI and a shell-injection vector in the import flow). The changelog states those issues were fixed, but some files in the submission were truncated so I could not fully verify every fix. Before installing or enabling t...详细分析 ▾
✓ 用途与能力
Name/description match the code and SKILL.md: the bundle contains a validation engine, CLI wrapper, redundancy generator, UI, model registry and setup script. Files access the OpenClaw config (~/.openclaw/openclaw.json) and provider auth artifacts — expected for a model-management tool. No unrelated cloud creds or unrelated binaries are requested.
✓ 指令范围
SKILL.md confines runtime actions to model validation, backups, uses the OpenClaw CLI and the provided switchboard.sh/ui. It explicitly forbids direct editing of openclaw.json and prescribes dry-runs and confirmations. The SKILL.md does suggest editing model-registry.json to add new models (this changes the skill bundle's data), which is within the tool's domain but worth noting as it requires modifying shipped files.
✓ 安装机制
No install spec / no external downloads. This is instruction-first with bundled scripts (Python + Bash + HTML). That lowers install-time risk compared to fetching remote archives. No evidence of remote code pulls or unusual installers in included files.
✓ 凭证需求
The skill itself declares no required env vars; at runtime it conditionally reads provider API keys and OpenClaw auth files (ANTHROPIC_API_KEY, OPENAI_API_KEY, ~/.openclaw/auth/*) to detect available providers — this is proportional to model/provider discovery and redundancy features. It does read/write the user's OpenClaw config and creates backups under ~/.openclaw — expected for this purpose.
✓ 持久化与权限
No 'always: true' privilege. The skill reads/writes user-level config (~/.openclaw/openclaw.json and backups) and runs a UI server locally; these are appropriate for a model-management tool. It does not request system-wide privileges or modify other skills' configs in the provided excerpts.
安全有层次,运行前请审查代码。
运行时依赖
无特殊依赖
版本
latestv3.0.02026/2/26
- 重大升级:为 OpenClaw 中的 AI 模型管理引入强力保护机制。 - 所有模型分配必须使用提供的命令;严禁直接编辑 JSON。 - 每次配置变更自动验证、备份(30 个滚动副本)并支持即时回滚。 - 阻止不安全的分配(如将图像模型设为 LLM)并强制执行严格验证规则。 - 新增可视管理面板(Canvas UI)及完整 CLI 参考。 - 内置高级冗余、导入/导出、健康诊断与故障排查支持。
● 无害
安装命令
点击复制官方npx clawhub@latest install model-switchboard
镜像加速npx clawhub@latest install model-switchboard --registry https://cn.longxiaskill.com