by 安全扫描
OpenClaw
可疑
medium confidenceThe skill's stated function (improving and answering user questions) is plausible, but the runtime instructions claim automatic execution and dual-channel delivery (Telegram + CLI) while the manifest lists no install, no required credentials, and no persistent invocation — these mismatches and the broad automatic trigger are incoherent and warrant caution.
评估建议
This skill's core function (improving a user's question and providing an answer) is reasonable, but there are two important mismatches you should resolve before installing: (1) SKILL.md says it should 'automatically execute on any question' for a named user, yet the manifest does not mark the skill as always-on — ask the author to clarify the intended trigger and make it explicit and configurable (opt-in vs always-on). (2) The doc says outputs go to 'Telegram + CLI' but no Telegram credentials o...详细分析 ▾
ℹ 用途与能力
The name/description (question enhancer) align with the SKILL.md instructions to analyze, rewrite, expand, and answer questions. No unusual binaries, installs, or credentials are requested — that part is coherent. However, SKILL.md claims automatic execution for any user question (targeting a user 'Simon'), which is a behavioral detail not reflected in the skill metadata (always:false).
⚠ 指令范围
SKILL.md instructs the agent to 'automatically execute on any question' with no extra instruction required. That is a very broad, open-ended trigger that gives the agent persistent, autonomous scope to act on all user queries. The instructions also specify a multi-step pipeline (diagnose, highlight, rewrite, extend, answer, summarize) that is fine for the stated purpose, but the always-on phrasing is vague and could lead to noisy or unexpected behavior.
✓ 安装机制
There is no install spec and no code files — the skill is instruction-only. This is the lowest-risk install posture and matches the simple text-processing purpose.
⚠ 凭证需求
The SKILL.md lists delivery channels ('Telegram + CLI 双发') and names the user ('Simon') and AI ('hehe'), but the manifest declares no required environment variables, no API keys, and no config paths. Stating Telegram delivery without declaring any Telegram token/config is an inconsistency: either the skill cannot actually send to Telegram as described, or it relies on implicit credentials/config not declared in the manifest.
⚠ 持久化与权限
Metadata shows always:false (not forced into every run), but the runtime instructions demand automatic execution on any user question. This mismatch between declared invocation policy and the behavior described in the SKILL.md is an incoherence that affects privilege/behavior expectations. Autonomous invocation (disable-model-invocation:false) is normal, but the skill's implied always-on trigger should be explicit in metadata if intended.
安全有层次,运行前请审查代码。
运行时依赖
无特殊依赖
版本
latestv1.0.02026/4/14
初始版本
● 无害
安装命令
点击复制官方npx clawhub@latest install question-enhancer
镜像加速npx clawhub@latest install question-enhancer --registry https://cn.longxiaskill.com 镜像可用