by 安全扫描
OpenClaw
安全
medium confidenceThe skill's files and runtime instructions are internally consistent with its stated purpose (teaching an agent how to serve OpenPot iOS surfaces); nothing in the package asks for unrelated credentials or installs arbitrary code, but it does enable high-privilege features (terminal/SSH, calendar/chat persistence) that you should review before enabling.
评估建议
This package appears to be what it says: documentation and web-app templates to let an OpenClaw agent serve the OpenPot iOS client. Before installing, confirm you trust the agent/server that will host this skill because the skill enables and documents high-privilege surfaces (Terminal/SSH access, calendar access, chat persistence). Specifically: (1) only install on an agent/server you control and trust; (2) confirm device pairing/Ed25519 approval steps are done intentionally (don’t approve unkno...详细分析 ▾
✓ 用途与能力
Name/description (serve cards, apps, calendar, voice, chat persistence, onboarding) match the included assets: SKILL.md describes OpenPot APIs and behavior, and the bundle contains HTML web-app templates and an OpenPot status template. There are no unrelated binaries, host downloads, or unexpected credential requests.
ℹ 指令范围
SKILL.md instructs the agent how to present Chat, Pulse cards, and Web apps and to expose features such as calendar integration, chat persistence, page-capture handling, and a Terminal tab (SSH). Those behaviors are in-scope for an OpenPot client, but several of them imply access to sensitive state (SSH/terminal, calendars, persistent chat storage). The skill does not instruct the agent to read arbitrary files or exfiltrate data to third-party endpoints in the provided excerpts.
✓ 安装机制
Instruction-only skill with no install spec and no code that would be downloaded/executed. The bundle only contains static HTML templates and SKILL.md; nothing is written to disk by an installer here.
ℹ 凭证需求
The skill declares no required environment variables or credentials. That is consistent with a template/awareness skill that relies on the agent's existing server context. However, features described (Terminal / SSH, calendar integration, chat persistence, pairing with Ed25519 device auth) require the agent/server to hold keys and access to user data — so although no new secrets are requested, the skill expects the agent to already have privileged access to those resources.
✓ 持久化与权限
always:false (normal). The skill does not request being force-included. Autonomous invocation is allowed (platform default). The skill describes functionality that can be powerful if enabled (remote terminal), but it does not itself request system-wide configuration changes or other skills' credentials.
安全有层次,运行前请审查代码。
运行时依赖
无特殊依赖
版本
latestv6.0.02026/4/14
Calendar context push, chat persistence instructions, app emoji metadata, sync uninstall/reinstall flow, consolidated user guide, in-app guide webapp
● 可疑
安装命令 点击复制
官方npx clawhub@latest install openpot-awareness
镜像加速npx clawhub@latest install openpot-awareness --registry https://cn.clawhub-mirror.com
数据来源:ClawHub ↗ · 中文优化:龙虾技能库
OpenClaw 技能定制 / 插件定制 / 私有工作流定制
免费技能或插件可能存在安全风险,如需更匹配、更安全的方案,建议联系付费定制