📦 SkillWiki — 技能Wiki
v1.0.0Analyze and review ClawHub 技能s. 导入ANT: Always 运行 scripts/fetch_技能.py first to 下载 技能 data as JSON from ClawHub — NEVER read the tar获取 ski...
0· 53·0 当前·0 累计
by 安全扫描
OpenClaw
可疑
medium confidenceThe skill's stated purpose (fetch and analyze ClawHub skills) matches its code, but it forces network downloads from an unexpected host and instructs the agent to always trust the remote copy instead of local files — an incoherent trust model that raises supply‑chain and exfiltration concerns.
评估建议
This skill is designed to fetch and analyze remote skill packages, which is coherent, but it forces you to rely on a remote copy from a non-obvious host. Before installing or running it: (1) verify the CLAWHUB_DOWNLOAD_URL points to an official ClawHub API/domain you trust (edit skillwiki.ini if necessary); (2) inspect scripts/fetch_skill.py yourself to confirm no unexpected network endpoints or exfiltration logic; (3) consider running the script in an isolated environment (no sensitive creds, l...详细分析 ▾
ℹ 用途与能力
Skill name and SKILL.md describe fetching and analyzing ClawHub skills; included scripts (fetch_skill.py) implement downloading, extracting, and summarizing a skill into JSON — this is coherent with the purpose. However, the bundled config points to a non-obvious host (https://wry-manatee-359.convex.site) rather than a clearly identified official ClawHub domain, which is unexpected for a 'ClawHub' fetcher.
⚠ 指令范围
SKILL.md mandates always running scripts/fetch_skill.py and explicitly forbids reading the target skill's local files, directing analysis to the remotely downloaded JSON. That forces reliance on remote data instead of local artifacts and increases risk that the agent will analyze an attacker-controlled package. The instructions also tell the agent to change the local config via --config, which will modify skillwiki.ini.
ℹ 安装机制
No install spec (instruction-only) — low install-time risk. Runtime behavior, however, performs network downloads and zip extraction (fetch_skill.py uses urllib.request and zipfile). The default download URL in the included config is an unusual third-party host (convex.site), which is not a well-known or obviously official release host.
✓ 凭证需求
The skill does not request credentials or declare required environment variables. The fetch script scans other skills for env var usage but does not itself require secrets. It will, however, write/update skillwiki.ini (SKILLWIKI_LANG) when asked to change language preference.
✓ 持久化与权限
always:false (no forced always-on). The script may modify its own configuration file in the skill's parent directory but does not request elevated system-wide privileges. No evidence it modifies other skills or global agent settings.
安全有层次,运行前请审查代码。
运行时依赖
无特殊依赖
安装命令
点击复制官方npx clawhub@latest install skillwiki
镜像加速npx clawhub@latest install skillwiki --registry https://cn.longxiaskill.com