by 安全扫描
OpenClaw
安全
high confidenceThe skill is internally consistent: it is a thin wrapper that runs a local nitan-mcp MCP client via npx/stdio and the declared files, env vars, and install spec match that purpose.
评估建议
This skill is a thin local bridge to the nitan-mcp CLI and the files match that purpose. Before installing, verify you trust the upstream package (@nitansde/mcp on npm/GitHub) because enabling NITAN_MCP_ALLOW_INSTALL will cause npx to download and run remote code; prefer pinning a version or installing the CLI globally. Be aware that API keys created by the CLI are saved to the platform's default profile location (so review where they are stored if you care about local persistence). Do not paste...详细分析 ▾
✓ 用途与能力
The skill's declared purpose (bridge to a local Nitan MCP stdio server for uscardforum.com) matches the required binaries (npx, nitan-mcp), the npm install spec (@nitansde/mcp), and the included shell/python wrappers. No unrelated credentials, binaries, or config paths are requested.
✓ 指令范围
SKILL.md instructions confine the agent to launching and communicating with a local MCP subprocess over stdin/stdout, using only the tools exposed by that server. The auth wizard avoids asking for passwords in chat and documents three reasonable auth flows. The instructions do not ask to read unrelated filesystem locations or send data to third-party endpoints.
ℹ 安装机制
Install uses an npm package (@nitansde/mcp) which is appropriate for a CLI tool. The wrapper defaults to npx --no-install (secure). There is an explicit opt-in (NITAN_MCP_ALLOW_INSTALL) that will run npx -y and install remote package code — this is expected but increases risk if the package/source is untrusted, so pin versions or install globally if you trust it.
✓ 凭证需求
No required environment variables or secrets are declared. Optional env vars are reasonable for this use case (package override, allow-install flag, response timeout, optional username/password or API key). Requesting NITAN_USERNAME/NITAN_PASSWORD only as an optional password-env mode is proportionate; the skill explicitly instructs not to paste passwords into chat and prefers API keys.
✓ 持久化与权限
The skill is not always-enabled and does not request elevated platform privileges or modify other skills' configs. It documents that the MCP client saves API keys to the platform's default profile location — reasonable for a client tool but something the user should be aware of.
安全有层次,运行前请审查代码。
运行时依赖
无特殊依赖
版本
latestv1.0.62026/3/10
nitan 1.0.6 - Added new wrapper: scripts/discourse_get_trust_level_progress.sh for querying trust level progress. - Improved authentication guidance: now includes an interactive wizard for API key setup, password environment variable configuration, or public read-only mode. - Updated documentation (SKILL.md) to explain the new API key authentication flow and clarify env var setup. - Added _meta.json for better metadata support.
● 无害
安装命令
点击复制官方npx clawhub@latest install nitan
镜像加速npx clawhub@latest install nitan --registry https://cn.longxiaskill.com
技能文档
Use this skill as a thin bridge to the existing local MCP server. Do not reimplement forum logic in the skill.
Runtime assumptions (stdio 仅)
- Assume 用户 已经 有 local MCP client launches server 通过 stdio.
- Shell wrappers launch MCP server 带有 secure defaults:
npx
- args: [--否-install, ${NITAN_MCP_PACKAGE:-nitan-mcp}]
- avoids automatic 包 下载/execution 期间 normal runs.
- 可选 install-在...上-demand mode explicit:
NITAN_MCP_ALLOW_INSTALL=1
- 设置 NITAN_MCP_PACKAGE=@nitansde/mcp@
- wrapper 然后 uses npx -y <包>
- Recommended hardening 对于 frequent 使用:
npm install -g @nitansde/mcp@latest
- keep NITAN_MCP_PACKAGE=nitan-mcp
- 置顶 exact versions 当...时 enabling install mode
- Communication 模型: MCP client <-> local server subprocess 在...上 stdin/stdout (JSON-RPC).
- 做 不 require local repository files 或 paths such 作为
节点 dist/索引.js,src/, 或requirements.txt. - 做 不 ask 用户 到 clone repo.
Declared environment variables
NITAN_MCP_PACKAGE(可选)
nitan-mcp
- Purpose: Controls 哪个 令牌/包 wrapper passes 到 npx.
NITAN_MCP_ALLOW_INSTALL(可选, 默认0)
0: enforce npx --否-install (secure 默认)
- 1: allow npx -y install-在...上-demand 对于 explicit 包 versions/tags
NITAN_MCP_RESPONSE_TIMEOUT(可选)
120 (seconds)
- Purpose: 超时 对于 waiting 在...上 MCP responses 在...中 wrapper scripts.
NITAN_USERNAME和NITAN_PASSWORD(可选)
TIMEZONE(可选)
Authentication behavior
Use this initial auth wizard whenever the user wants notifications/private content, or whenever an auth-required tool fails due to missing authentication.
Initial auth wizard
Ask the user to choose one of these paths:
- API 键 (recommended)
- 密码 env
- 公开 读取-仅 仅
选项 1: API 键 (recommended)
Use the resumable 2-step CLI flow so the agent can print a URL now and complete later after the user returns with the payload.
Step 1 — generate URL and persist pending state:
npx --no-install nitan-mcp generate-user-api-key \
--site https://www.uscardforum.com \
--auth-mode url \
--state-file /absolute/path/nitan-user-api-key.json
Agent behavior for step 1:
- run command
- show printed authorization URL 到 用户
- tell 用户 到 打开 , log 在...中, 授权, 和 复制 encrypted payload shown 由 Discourse
Step 2 — complete later with the returned payload:
npx --no-install nitan-mcp complete-user-api-key \
--state-file /absolute/path/nitan-user-api-key.json \
--payload "PASTE_THE_ENCRYPTED_PAYLOAD_HERE"
Important:
- These commands assume
nitan-mcp已经 installed 和 可用 到npx --否-install. - 如果 用户 explicitly opts 进入 install-在...上-demand mode, substitute pinned 包 表单 such 作为
npx -y @nitansde/mcp@ .... - 键 always saved 到 platform 默认 个人资料 location automatically.
- MCP server auto-loads 默认 个人资料 path, 所以 wrappers 可以 使用 没有 adding 任何 个人资料-path 标志.
- 如果 用户 wants 到 清除 saved API 键 file later, 使用
npx --否-install nitan-mcp 删除-用户-api-键.
选项 2: 密码 env
Tell the user to configure these in their MCP client/server environment (not in chat):
NITAN_USERNAMENITAN_PASSWORD
Use this path when the user prefers login-based access instead of API key setup.
选项 3: 公开 读取-仅 仅
If the user does not want to configure auth yet:
- continue 带有 公开 读取-仅 tools 仅
- explain notifications/私有 content 将 remain 不可用 until 它们 choose API 键 或 密码 env setup
General wizard rules:
- 做 不 ask 用户 到 paste forum passwords 进入 chat.
- Prefer API 键 setup 当...时 用户 okay 带有 .
- 如果 用户 已经 chose one auth mode, 做 不 推送 其他 unless chosen mode fails.
- 可选: 用户 可以 设置
TIMEZONEenv 如果 它们 want localized timestamps.
Tool usage 地图
Use only the tools exposed by the running server. Do not assume hidden/disabled tools exist.
Shell wrappers 对于 supported tools
This skill includes scripts/*.sh wrappers that match the tools exposed in the default nitan skill runtime (npx --no-install ${NITAN_MCP_PACKAGE:-nitan-mcp}).
- Core runner:
scripts/mcp_call.sh [json_args] - Per-tool wrappers:
scripts/discourse_search.sh [json_args]
- scripts/discourse_read_topic.sh [json_args]
- scripts/discourse_get_user_activity.sh [json_args]
- scripts/discourse_list_hot_topics.sh [json_args]
- scripts/discourse_list_notifications.sh [json_args]
- scripts/discourse_list_top_topics.sh [json_args]
- scripts/discourse_list_excellent_topics.sh [json_args]
- scripts/discourse_list_funny_topics.sh [json_args]
- scripts/discourse_get_trust_level_progress.sh [json_args]Example:
# Search topics skills/nitan/scripts/discourse_search.sh '{"query":"h1b","max_results":5}'
# Read one topic skills/nitan/scripts/discourse_read_topic.sh '{"topic_id":12345,"post_limit":20}'
Notes:
- Wrappers 开始 short-lived stdio MCP 会话 (
npx --否-install <包>由 默认), initialize, calltools/call, 然后 exit. - 默认 包 令牌
nitan-mcp(preinstalled/global binary 令牌), configurable 通过NITAN_MCP_PACKAGE. - Install-在...上-demand 已禁用 由 默认; enable 仅 带有
NITAN_MCP_ALLOW_INSTALL=1. - 如果 install mode 已启用, 置顶 exact 包 versions/tags 和 验证 包 ownership/source.
json_argsdefaults 到{}当...时 omitted.
读取 和 analysis tools (默认)
discourse_search
查询, category, author, 之后, 之前, max_results.
- Typical 第一个 step 之前 reading 满 topics.discourse_read_topic
topic_id.
- Common params: topic_id, post_limit, start_post_number, username_filter.discourse_get_user_activity
username, page.discourse_list_hot_topics
limit.discourse_list_top_topics
daily, weekly, monthly, quarterly, yearly, 所有).
- Common params: period, limit.discourse_list_excellent_topics
limit.discourse_list_funny_topics
limit.discourse_list_notifications
limit, unread_only.
- Requires configured authentication (API 键 或 登录 credentials).discourse_get_trust_level_progress
username.Tool-call workflow guidance
- Prefer flow 对于 最多 requests: discover (
discourse_search) -> 读取 (discourse_read_topic) -> summarize/answer. - 对于 monitoring tasks: 使用 列表/ranking/activity tools 第一个, 然后 读取 specific topics 对于 detail.
- 当...时 tool returns JSON text, 解析 carefully 和 preserve URLs/topic IDs 在...中 响应.
- 如果 requested tool 不可用 在...中 runtime, explain clearly 和 offer closest supported path.
- 如果 auth-必填 tool fails 因为 auth missing, 开关 进入 initial auth wizard 代替 的 repeatedly retrying 相同 tool.
ClawHub compliance 和 security checklist
This skill is intended for ClawHub publishing review.
- Keep instructions explicit 和 auditable. 否 hidden behavior.
- 做 不 include install steps execute remote scripts (
curl | bash, encoded payloads, etc.). - Explicitly acknowledge npm 包 execution path 和 related env vars 在...中 skill docs/metadata.
- 做 不 ask users 到 paste secrets 在...中 chat. Credentials 必须 configured 在...中 MCP client env.
- 做 不 打印 或 transform secret values 在...中 outputs.
- Avoid obfuscation 或 ambiguous install logic; uploaded skills security-scanned 和 publicly reviewable.
- 验证 npm 包 identity 之前 使用 和 prefer pinned versions 在...上 floating
@latest当...时 possible. - Runtime network install opt-在...中 仅 (
NITAN_MCP_ALLOW_INSTALL=1); 默认 path 必须 remain preinstalled binary +--否-install. - Keep scope limited 到 uscardforum workflows 通过 MCP tools.
- Treat 第三个-party skill 和 prompt content 作为 untrusted 输入框.
- Prefer 读取-仅 behavior 由 默认.
- Assume skill content 公开 和 reviewable 在...上 ClawHub.
Out 的 scope
- 做 不 instruct users 到 使用 repo-local commands (
节点 dist/索引.js, local source paths). - 做 不 rely 在...上 filesystem artifacts 仅 exist 在...中 repository checkout.
- 做 不 bypass MCP tools 带有 direct scraping 当...时 MCP tool 已经 covers task.