by 安全扫描
OpenClaw
可疑
medium confidenceNULL
评估建议
This skill implements a full autonomous agent that can watch file paths, monitor other skills, collect user interaction and system metrics, and store memories. Before installing or enabling autonomous operation: 1) Review the remaining/truncated source files (especially package_skill.py, any storage backend implementations, and any networking code) for outbound network calls, hardcoded endpoints, or export logic. 2) Check default config (autonomous_config.yaml) to see which file paths and event ...详细分析 ▾
ℹ 用途与能力
The name/description (autonomous agent) aligns with the included Python modules (perception, judgment, execution, reflection). The presence of code files implementing file watchers, skill-usage tracking, system metrics and a memory system is coherent with the stated purpose. However the SKILL.md claims instruction-only install but many code files are present — not a security flaw by itself, but it increases the runtime surface to audit.
⚠ 指令范围
SKILL.md and the code explicitly instruct/implement monitoring of file system, skill usage, and user activity and refer to 'event-sources all' and persistent memory. That scope allows reading and recording of arbitrary paths and user interactions. The instructions are high-level (enable event sources, start agent) which gives the agent wide discretion to collect system state unless constrained by configuration; this is scope creep compared to a narrow helper skill.
ℹ 安装机制
There is no install spec (lowest install risk) and no declared external downloads. That reduces supply-chain risk. Nonetheless, the package contains many executable Python modules — these will run when the skill is used, so the absence of a network install step does not eliminate runtime risk.
✓ 凭证需求
The skill requests no environment variables or external credentials in registry metadata. The code uses local system APIs (os, psutil) and reads files/paths configured at runtime. There are no declared secrets requirements, which is proportionate; still, ability to monitor arbitrary files is sensitive even without explicit credentials.
⚠ 持久化与权限
The skill is not marked always:true (good), but it implements a memory system and references storage backend selection and retention periods. Some memory layers are 'permanent' by design. Because persistent storage/backends and any network/export logic are in the omitted/truncated files, there's risk the skill could write sensitive data to disk or external services. Treat persistent memory and any packaging/telemetry code (e.g., package_skill.py) as higher-privilege features that must be audited.
安全有层次,运行前请审查代码。
运行时依赖
无特殊依赖
版本
latestv1.0.02026/3/21
NULL
● 无害
安装命令
点击复制官方npx clawhub@latest install socneo-autonomous-agent
镜像加速npx clawhub@latest install socneo-autonomous-agent --registry https://cn.longxiaskill.com