by 安全扫描
OpenClaw
安全
high confidenceThe skill's code, instructions, and requested capabilities are coherent with a local pre-install security scanner; nothing in the bundle asks for unrelated credentials, installs, or hidden privileges.
评估建议
This skill appears to do exactly what it says: run a local scanner on a skill directory. Before using it, (1) review the bundled scripts yourself (you have them in the package) to confirm they don't execute code from scanned projects, (2) run the scanner in a sandbox or with least-privilege access if you will scan untrusted repositories, and (3) only point it at directories you intend to expose to a scanner (it will read files and report secrets it finds). The presence of 'Bash' in allowed-tools...详细分析 ▾
✓ 用途与能力
Name/description claim a pre-install scanner and the package contains a scanner (scripts/scan_skill.py) plus a pattern database (scripts/patterns.py). The allowed tools (Read, Glob, Grep, Bash) and the instruction to run the included python scanner are consistent with scanning a skill directory.
ℹ 指令范围
SKILL.md instructs the agent (or user) to run the included python scanner against a target skill directory. The scanner reads all files under the provided directory and reports findings (including secrets). That file I/O is expected for this purpose, but be aware the tool will enumerate and print contents from whatever path you point it at — so only scan directories you intend to inspect.
✓ 安装机制
No install spec — instruction-only with bundled scripts. The scanner code is included directly in the skill (no external downloads or package installs), which is proportionate for a local analysis tool.
✓ 凭证需求
The skill requests no environment variables or external credentials. The pattern database contains regexes to detect secrets, but the skill itself does not require or access secrets from your environment.
✓ 持久化与权限
Registry flags show disable-model-invocation: true and always is false. The skill is not auto-invocable and does not request persistent/system-wide changes. It does not attempt to modify other skills' configs in the provided code.
⚠ scripts/patterns.py:357
Shell command execution detected (child_process).
⚠ scripts/patterns.py:350
Dynamic code execution detected.
安全有层次,运行前请审查代码。
运行时依赖
无特殊依赖
版本
latestv1.1.12026/2/8
- Expand pattern database from ~70 to 151 patterns across 15 categories - Add 5 new categories: code_before_review, config_backdoor, memory_corruption, confused_delegation, persistence - Add live package verification -- pip/npm install commands checked against PyPI/npm in real time - Non-existent packages flagged CRITICAL (slopsquatting/hallucination detection) - New coverage: reverse shells, cloud IMDS, env var hijacking, persistence mechanisms, dependency confusion, GitHub Actions poisoning, 16+ obfuscation techniques - Document advisory hook behavior in SKILL.md
● 无害
安装命令
点击复制官方npx clawhub@latest install scan-skill
镜像加速npx clawhub@latest install scan-skill --registry https://cn.longxiaskill.com