by 安全扫描
OpenClaw
可疑
high confidenceThe package contents implement a decentralized agent-to-agent comms (Nostr + LAN) but the registry metadata/description claims a completely different purpose (Skill Operator); the code also auto-installs packages, opens a LAN HTTP server, and actively scans the local subnet — these mismatches and network behaviors deserve caution.
评估建议
Do not install this into a production or internet-connected environment yet. Key issues to resolve before trusting it: (1) The registry listing claims a completely different purpose (Skill Operator) than the shipped code (AgentComm). Ask the publisher to explain and provide a trusted source/homepage. (2) The code auto-installs Python packages at runtime (pip install), which modifies your environment; prefer an explicit, reviewed install step. (3) The skill will open an HTTP server on 0.0.0.0 and...详细分析 ▾
⚠ 用途与能力
Registry metadata (name: 'Skill Operator', description: managing installed skills, web UI, backups, git updates, rollback) does not match the included SKILL.md, README, and code, which implement 'AgentComm' (Nostr + LAN messaging, IPFS file sharing). This is a substantive mismatch — a skill-op manager would not need Nostr/zeroconf/IPFS code. The mismatch could be an accidental packaging error or intentional mislabeling; either way it is incoherent.
⚠ 指令范围
The SKILL.md and README instruct generating keypairs, starting an HTTP server listening on 0.0.0.0:8765, advertising with mDNS, discovering peers on the LAN, sending files to IPFS, and messaging via Nostr relays. The included code implements these behaviors and additionally: (a) auto-installs Python packages at import time (subprocess pip install), (b) actively scans the local subnet by issuing HTTP requests to every .1-.254 address, and (c) will accept POSTed messages and files over the network. These runtime actions go beyond simple 'helper' tools and require explicit user consent and network consideration. The SKILL.md does not clearly call out the active LAN scanning behavior (it promises discovery but the code uses an aggressive scan), nor does the registry metadata warn about these network operations.
⚠ 安装机制
No formal install spec is declared, but the code performs runtime installation: multiple files attempt to pip-install dependencies (nostr, zeroconf) via subprocess.run when imports fail. That means network retrieval and package installation will occur automatically when the skill is imported/executed. This is higher-risk than a pure instruction-only skill because it writes to the environment and fetches code from PyPI without an explicit install step.
⚠ 凭证需求
Registry metadata lists no required env vars, but README mentions optional/expected envs (NOSTR_PRIVATE_KEY, NOSTR_RELAYS, IPFS_API_URL). The code will generate and use a private key (nsec) and can accept a private key from environment — this is a sensitive secret. The skill requests ability to listen on a network port and access the network and filesystem (for reading files to upload). Those privileges are consistent with a comms/file-share skill but they were not declared in registry metadata, and asking for a private key (nsec) should be highlighted as sensitive.
ℹ 持久化与权限
always:false (normal). The skill will start a persistent LAN HTTP server (0.0.0.0:8765), advertise via mDNS, and run background threads. That gives it a continuous network presence on the LAN while enabled. This behavior is plausible for a communication skill, but it increases blast radius — if you install it trustworthily, consider running in a restricted environment or ensuring only trusted LAN peers can reach the port.
安全有层次,运行前请审查代码。
运行时依赖
无特殊依赖
版本
latestv1.0.12026/2/25
AgentComm 1.0.1 introduces decentralized agent communication with dual Internet (Nostr) and LAN modes. - Added two new modules: `agent_comm.py` and `nostr_comm.py`, providing internet (Nostr) and local network agent messaging capabilities. - Added `requirements.txt` specifying dependencies: Python 3.9+, `nostr`, `zeroconf`, and `requests`. - Removed legacy files: `_meta.json` and `skill_operator.py`. - Replaced the skill's focus from skill management to agent-to-agent encrypted messaging and file sharing, supporting both decentralized (Nostr) and LAN communication. - Updated documentation to reflect the new AgentComm features, commands, and requirements.
● 可疑
安装命令
点击复制官方npx clawhub@latest install skill-operator
镜像加速npx clawhub@latest install skill-operator --registry https://cn.longxiaskill.com