📦 Syscheck — 系统体检
v1.0.5一键查看 CPU、内存、磁盘、负载、运行进程等关键指标,快速定位系统瓶颈与健康状态。
0· 293·1 当前·1 累计
by 下载技能包
最后更新
2026/4/19
安全扫描
OpenClaw
安全
medium confidenceThe skill appears to implement a local system-checking CLI that stores its own logs under the user's home directory; nothing in the provided files indicates credential requests, remote exfiltration, or installer downloads, although the SKILL.md promises system metrics that should be verified against the rest of the script.
评估建议
This skill is internally consistent with a local sysadmin CLI: it stores state and logs under ~/.local/share/syscheck and does not request external credentials or perform downloads in the provided files. Before installing or running it: (1) review the remainder of scripts/script.sh to confirm there are no network calls, shell execs that read sensitive system files (e.g., /etc/*, ssh keys, cloud credentials), or commands that escalate privileges; (2) be aware that any text you pass to commands li...详细分析 ▾
ℹ 用途与能力
Name and description claim a system-health tool (CPU, memory, disk, processes). The included script implements many command handlers (scan, monitor, report, export, status, search, recent) and maintains a data directory under $HOME. The visible portion of the script focuses on logging and exporting entries; the metric-gathering pieces (e.g., running top/df/free) were not visible in the truncated content — so the overall purpose is plausible but you should verify the rest of the script actually collects the promised system metrics.
ℹ 指令范围
SKILL.md instructs use of the syscheck CLI and examples are scoped to system checks. The script itself reads and writes only to its own data directory (~/.local/share/syscheck) and uses common command-line tools (grep/tail/du/wc/cat). It does persist user-provided inputs (commands like scan/report/alert/...) into log files; that means sensitive strings passed to the tool will be stored in plain files under the user's home directory. No instructions or code in the provided portion attempt to read unrelated system credentials or network endpoints.
✓ 安装机制
No install spec or remote download is present; the skill is instruction/code-only. There are no external URLs or archive extracts. This is a low install-risk footprint — files included are the script and SKILL.md.
✓ 凭证需求
The skill declares no required environment variables or credentials. The script uses HOME implicitly to create a per-user data directory, which is proportionate for a local CLI tool. No secrets, API keys, or external service auth are requested.
ℹ 持久化与权限
The script creates and writes to ~/.local/share/syscheck and maintains history/log files there — this is expected for a monitoring tool but does introduce on-disk persistence of recorded inputs and events. The skill does not request global or system-wide privileges, and 'always' is false.
安全有层次,运行前请审查代码。
运行时依赖
无特殊依赖
版本
latestv1.0.52026/3/15
old template -> domain-specific v2.0.0
● 可疑
安装命令
点击复制官方npx clawhub@latest install syscheck
镜像加速npx clawhub@latest install syscheck --registry https://cn.longxiaskill.com