📦 Security Scanner Triage — 安全防护工具
v0.1.0安全性/virus scanner findings 用于 skills 和 automations. Use when scanner reports mixed-risk findings (defaults, credential handling, 数据 routing,...
0· 133·0 当前·0 累计
by 安全扫描
OpenClaw
安全
high confidenceInstruction-only triage helper whose requests and instructions are consistent with its stated purpose; no extra credentials, installs, or suspicious behaviors are present.
评估建议
This is an instruction-only triage workflow and appears internally consistent. Before installing, ensure you: 1) only run it against the repository or skill bundle you intend triaged (avoid granting access to system-wide files), 2) provide the scanner output as input rather than giving blanket filesystem access, and 3) confirm the agent follows the guardrail to never read or transmit secrets (e.g., .env). If you need automated/remote triage that will inspect many repos or system files, consider ...详细分析 ▾
✓ 用途与能力
The skill is an instruction-only triage workflow for scanner findings and requests no env vars, binaries, or installs — this matches the described purpose.
ℹ 指令范围
SKILL.md stays on-topic (normalize claims, verify evidence, rate risk, remediation, re-scan checklist). It asks the agent to "locate exact file/line evidence," which is appropriate, but is somewhat open-ended about which files may be inspected; guardrails note not to leak .env secrets. Recommend limiting file scope to the target repo and published skill files to avoid accidental access to unrelated system secrets.
✓ 安装机制
No install spec and no code files — lowest-risk delivery model (instruction-only).
✓ 凭证需求
No environment variables, credentials, or config paths are requested. Declared guardrails explicitly instruct not to leak secrets.
✓ 持久化与权限
always:false and default invocation settings; the skill does not request persistent presence or elevated platform privileges.
安全有层次,运行前请审查代码。
运行时依赖
无特殊依赖
安装命令
点击复制官方npx clawhub@latest install security-scanner-triage
镜像加速npx clawhub@latest install security-scanner-triage --registry https://cn.longxiaskill.com