📦 Open — 打开
v1.0.0Source Contributor 自主在 GitHub 上搜寻适合新手的 issue,按复杂度编写修复、测试并提交 PR,同时强制执行安全与审批阈值。
0· 19·0 当前·0 累计
by 下载技能包
最后更新
2026/4/20
安全扫描
OpenClaw
可疑
medium confidenceThe skill's declared metadata, runtime instructions, and shipped scripts are not fully consistent: it legitimately needs a GitHub token and will send repo data to an external cloud model, but the registry metadata omits the required credential and the install/setup behavior persists tokens to disk contrary to some guidance — review before installing and give only a dedicated, limited token if you proceed.
评估建议
Key things to consider before installing:
- Source and provenance: the skill's repository and owner are not a known, trusted maintainer. Review the code yourself (especially setup.py and any code that would actually push PRs) before running any install steps.
- Credentials: this skill needs a GitHub Personal Access Token (the code expects GITHUB_TOKEN / setup input). Use a dedicated token with only public_repo scope and rotate it after testing. Do NOT reuse a personal token that has broader sco...详细分析 ▾
⚠ 用途与能力
The skill's stated purpose (autonomously finding issues, writing fixes, running tests, and opening PRs) matches the included scripts and README. However the registry-level metadata claimed no required env vars/credentials while install.json, README, SKILL.md, and setup.py all expect a GITHUB_TOKEN. That metadata mismatch is an incoherence that could mislead users about what secrets the skill needs.
⚠ 指令范围
SKILL.md and the scripts clearly instruct the agent to read/cloned repositories, run tests, and use a cloud model (qwen3-coder-next:cloud) to generate code. That behavior is consistent with the described purpose, but it means repository source (and potentially secrets present in repos) may be sent to an external model—this is significant data exposure and should be explicit. The code also promises full PR submission under the user's identity, but the Submitter is only described as a task (no concrete API calls implemented), so implementation is incomplete/ambiguous.
ℹ 安装机制
There is no remote download of third-party binaries; the package is instruction/script-based and shippped locally. install.json declares a postInstall that runs scripts/setup.py, which is interactive and will persist configuration. Running setup.py at install-time (postInstall) may prompt and store sensitive data unexpectedly; this is a moderate-installer risk but not a remote code-download risk.
⚠ 凭证需求
Requesting a GitHub personal access token (public_repo scope) is appropriate for opening PRs, so the credential itself is proportionate. But the registry metadata incorrectly lists no required env vars. Additionally, setup.py writes the token into ~/.openclaw/workspace/contrib-scout/config.json (plain text), contradicting the README's admonition to 'store token in environment variable' — persisting the token to disk increases risk if the machine is shared or compromised. The skill will also send repository contents to a cloud model (qwen3-coder-next:cloud), which is functionally related to the purpose but a significant data-leak/privacy consideration that should be explicit and under user control.
ℹ 持久化与权限
The skill does not request always:true and does not modify other skills. It does persist configuration, logs, and cloned repos under ~/.openclaw/workspace/contrib-scout/, which is expected for this functionality. The postInstall running setup.py is potentially surprising (interactive token entry and config write) and could be considered intrusive if not made clear at install time.
安全有层次,运行前请审查代码。
运行时依赖
无特殊依赖
版本
latestv1.0.02026/4/20
Initial release with graduated complexity levels
● 可疑
安装命令
点击复制官方npx clawhub@latest install open-source-contributor
镜像加速npx clawhub@latest install open-source-contributor --registry https://cn.longxiaskill.com