by 安全扫描
OpenClaw
可疑
medium confidenceNULL
评估建议
This skill appears to be a straightforward Vapi API integration with a small helper script, but: 1) the registry metadata omits the required VAPI_API_KEY — plan to provide that key as a secure gateway secret (don't paste it into public logs); 2) avoid blindly running curl | bash from https://vapi.ai/install.sh — fetch and inspect the installer first or install from a verified package source (GitHub release or package manager) if available; 3) review bin/vapi-api.mjs (it's small and readable) to ...详细分析 ▾
ℹ 用途与能力
The skill's stated purpose (manage Vapi assistants, calls, phone numbers, tools, webhooks) matches the included helper script and API endpoints. However, the registry metadata claims no required environment variables while SKILL.md and the helper script both require VAPI_API_KEY (and optionally VAPI_MODE and VAPI_BASE_URL). This metadata mismatch is likely an oversight but is an incoherence the buyer should be aware of.
ℹ 指令范围
SKILL.md confines runtime actions to calling Vapi's REST API or using the Vapi CLI. The instructions do not ask the agent to read unrelated local files or exfiltrate arbitrary data. They do, however, recommend piping an install script from the network (see install mechanism), which broadens scope implicitly by running external code.
⚠ 安装机制
There is no formal install spec in the registry, but the README/SKILL.md suggests running curl -sSL https://vapi.ai/install.sh | bash to install the CLI. Download-and-execute-from-network is higher risk — you should inspect that install script's contents or prefer verified package sources before running it. The included helper (bin/vapi-api.mjs) itself is small and readable.
⚠ 凭证需求
Functionality reasonably requires one credential: VAPI_API_KEY, which SKILL.md documents. That is proportionate. But the registry metadata lists no required env vars (incoherent). SKILL.md also references VAPI_MODE and VAPI_BASE_URL for configuration; ensure only the API key is provided to the skill and that it's stored as a gateway secret rather than pasted into logs. No other unrelated credentials are requested.
✓ 持久化与权限
The skill does not request always:true, does not modify other skills or global agent settings, and does not request persistent system privileges. Autonomous invocation is allowed (platform default) but not combined with other high-risk flags.
安全有层次,运行前请审查代码。
运行时依赖
无特殊依赖
版本
latestv0.1.02026/2/8
NULL
● 可疑
安装命令
点击复制官方npx clawhub@latest install vapi
镜像加速npx clawhub@latest install vapi --registry https://cn.longxiaskill.com